In a video posted to YouTube on Tuesday, chief executive Fred Voccola said the company shut down the compromised program within an hour of noticing the attack, potentially stopping the hackers from hitting more businesses.įour days after the attack was discovered, it's still unclear exactly how damaging it was, especially since many businesses have been shut for the long weekend.
JACK KREBS STAMOS GROUP RANSOMWHERE SOFTWARE
He called them “apex predators.Kaseya, which sells software to help other companies manage their computer networks, confirmed hackers broke into its system through a software vulnerability in its code. With businesses paying millions in ransoms, “we have cybercriminals who are more determined and better resourced than ever before,” according to Cable. Getting into Kaseya provided incredibly broad access to other companies and their users/customers. This past weekend REvil launched a supply chain hack. Criminal organizations do not care about the rules and now have acquired the ability to carry out government-level strikes. He noted, “Ransomware groups don’t abide by the same rules, and in some ways, we could see it have a larger impact.” International laws and treaties outline the rules and guidelines nation-states are supposed to follow.
Jack Cable, a cybersecurity researcher at Krebs Stamos Group, suggested this is the most alarming element in recent attacks. The tactics and skills of sophisticated adversaries are being adopted by groups with financial motives. These ransomware attacks are starting to look more like nation-state operations.
New Era of HackingĪccording to experts at Huntress, a cybersecurity company, the biggest area of concern is not the number of victims but the high level of sophistication and planning, which hints at a government operation rather than a criminal one. This past May, the nation saw panic-buying and fuel shortages as a result of that shutdown. Luckily, the type of immediate, major impact the United States faced in the Colonial Pipeline hack did not recur. Others included architecture firms, libraries, plastic surgery centers, and dental practices. Eleven schools in New Zealand were victimized. A pharmacy chain, a public broadcaster, a gas station chain, and a state railway were hacked in Sweden. Swedish grocery chain Coop said it will have to keep its 800 stores closed for a second day due to its cash register software supplier being affected. Victims receive a decoder key when they pay a ransom. The REvil criminals were able to infiltrate networks and implement malware that scrambled data. Public agencies and businesses across the world were affected.
A few weeks ago, Biden pressed Russian President Vladimir Putin during a summit to stop giving hacking groups a haven in his country as they attack the U.S. REvil is a well-known ransomware group that, according to cybersecurity experts, is based in Russia. President Joe Biden suggested that the United States would respond if it were determined the Kremlin was involved in the attack. Still, REvil was able to lock up tens of thousands of computers. Kaseya sells its software to thousands of technology providers but claims that only 50 to 60 customers were impacted. The extent of the damage remains unclear, but it is estimated somewhere between 800 to 1,500 companies were affected. According to chief executive Fred Voccola, the company detected the compromise within an hour, was able to shut it down, and limited the number of businesses and networks involved. REvil broke into its system through a vulnerability in its code. It also sells to third-party service providers. Kaseya sells software to companies to manage their information technology.
0 kommentar(er)
