The vendor will work with customers affected by the early July spate of ransomware attacks to unlock files; it s unclear if the ransom was paid. The attacks, which exploited now-patched zero-days in the Kaseya Virtual System/Server Administrator (VSA) platform, affected customers in 22 countries using the on-premises version of the platform. The vendor announced via its rolling advisory on the incident that it had obtained the decryptor through a third party
Source: https://threatpost.com/kaseya-universal-decryptor-revil-ransomware/168070/