This week’s news focuses on the aftermath of REvil’s ransomware attack on MSPs and customers using zero-day vulnerabilities in Kaseya VSA. As REvil performed their attack remotely, they never had access to the victims’ networks and thus could not delete backups or steal data. Victims are restoring from backups rather than paying the ransom. Ransomwhere has launched a new payment tracking site for those affected by the attack. The gang wants $70 million in Bitcoin for the tool that allows all affected businesses to recover their files.
Source: https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-july-9th-2021-a-flawed-attack/