Largest Ransomware Attack

Kaseya is at the center of a major ransomware attacks said, their hack affected between 800 and 1,500 small businesses, potentially making it the largest ransomware attack ever.

What's IT Management Software?

Management software is that which is designed to streamline and automate management processes in order to lessen the complexity of large projects and tasks, as well as encourage or facilitate team cooperation, collaboration and proper project reporting, they’re allow you to effortlessly monitor, manage and troubleshoot workstations remotely. These software have gained popularity due to the recent pandemic which caused millions of employees to start working at home causing device repairs tougher than usual

Who're MSPs?

A Managed Service Provider aka MSPs is a company which remotely managed and perform IT related tasks on behalf of companies, they drastically improve the operations by monitoring their servers whilst ensuring the security of their systems. The variety of services MSPs provide can range from the monitoring of your IT network to being responsible for all repairs, updates and patches, as well as providing new software, hardware, infrastructure, cloud services, and staff resources.

Kaseya Logo

What's Kaseya

Kaseya provides IT solutions including VSA [Virtual Storage Appliance] for a unified remote-monitoring and management tool for handling networks and endpoints. In addition to this, they provide compliance systems, service desks and a service automation platform. They built software with enterprises and Managed Service Providers (MSPs); it solves the challenge many systems administrators have faced when maintaining the network of their PCs. A few of it’s top features include Automatic patching and management, Scheduling Scripts & Cost-Efficient System Management

About the Attack 👩‍💻

Kaseya was at the center of a major ransomware attack, it affected between 800 and 1500 small businesses potentially making it the largest ransomware attack, the software which managed several computer networks was hacked with the help of a software vulnerability.
The Dutch Institute of Vulnerability Disclosure aka DIVD had released a set of vulnerabilities found Kaseya's software in the month of April, most of them were patched but not all of them, one of them was a credentials leak flaw [CVE-2021-30116]. In a video posted on YouTube on Tuesday, chief executive Fred Voccola said:

company shut down the compromised program within an hour of noticing the attack, potentially stopping the hackers from hitting more businesses.
The hacker group REvil posted a statement on their blog on the Dark Web Blog, asking a ransom of 70 million dollars in Bitcoin, on paying the ransom Kaseya will receive a universal decryptor which could be use to the solve this issue within a matter of few hours. Every minute of downtime causes a huge disruption in the supply of income and customers.

Tagged in : kaseyavulnerabilitiescyber attackransomwareshodan

Dave Zachariah

Dave has been a passionate entrepreneur since the age of 16 and is currently working at Cyber Efficient with the goal of making businesses easier.