Get a Pentest and security assessment of your IT network.

News

Kaseya supply chain attack delivers mass ransomware event to US companies

Kaseya VSA is a commonly used solution by Managed Service Providers in the US and UK. It has administrator rights down to client systems, which means infected MSPs infect their clients systems. An apparent auto update in the product has delivered REvil ransomware. The attackers pushed an automated update, which is automatically installed on all managed systems. This management agent update is actually REvil. It deliberately targets backup systems, to hinder restoration. The attacker immediately stops administrator access to the VSA, and then adds a task called Kaseya. VSA Agent Hot-fix This fake update is then deployed across the estate.”]

Source: https://doublepulsar.com/kaseya-supply-chain-attack-delivers-mass-ransomware-event-to-us-companies-76e4ec6ec64b

Related posts
News

Ashley Madison 2.0 Hackers Leak 20GB Data Dump, Including CEO's Emails

News

Art of Twitter account hacking

News

Botnet authors use Evernote account as C&C Server

News

Canadian agency breached as hackers exploit CVE-2017-5638 flaw in Apache Struts 2