Enlarge (credit score: Suebsiri Srithanyarat / EyeEm / Getty Photos)
As many as 1,500 companies around the globe have been contaminated by extremely damaging malware that first struck software program maker Kaseya. In one of many worst ransom assaults ever, the malware, in flip, used that entry to fell Kaseya’s prospects.
The assault struck on Friday afternoon within the lead-up to the three-day Independence Day vacation weekend within the US. Hackers affiliated with REvil, one among ransomware’s most cutthroat gangs, exploited a zero-day vulnerability within the Kaseya VSA distant administration service, which the corporate says is utilized by 35,000 prospects. The REvil associates then used their management of Kaseya’s infrastructure to push a malicious software program replace to prospects, who’re primarily small-to-midsize companies.
Continued escalation
In a press release posted on Monday, Kaseya mentioned that roughly 50 of its prospects had been compromised. From there, the corporate mentioned, 800 to 1,500 companies which are managed by Kaseya’s prospects had been contaminated. REvil’s web site on the darkish internet claimed that greater than 1 million targets had been contaminated within the assault and that the group was demanding $70 million for a common decryptor.
Learn 19 remaining paragraphs | Feedback
