- 13
- Jul 2021
Kaseya Ransomware Hack Sets off Holiday Fireworks
It took a perfect storm of cleverly written software, one weak link and a holiday weekend in the United States to launch the world’s largest ransomware attack to date. As this was written, some 1,500 businesses were being held up for a total of $70 million.
If you’re one of our clients, you won’t have a problem with an automated response to an IT system from a third party because we don’t use those kinds of products or services. And the Kaseya attack is precisely why. Here’s a quick, not-too-technical explanation of what happened.
Kaseya has a product, VSA Network Monitoring, which detects problems in networks and responds to them automatically. A lot of its customers are managed service providers (MSPs) — effectively outsourced IT departments — that use the software to manage the networks of their customers, often smaller companies. Automation allows them to manage volumes of customers with little or no human interaction. When a problem occurs, the system issues an alert – with a job ticket for traceability – and then fixes the problem with a notification it was all done. It all happens in the blink of an eye, and when it’s successful, the system hums merrily along.
However, on Friday, July 2, when everyone in the United States was beginning their long-weekend celebration of Independence Day, hackers associated with the Russia-linked REvil ransomware-as-a-service group are believed to have used a never-before-seen security vulnerability in the software’s update mechanism to push ransomware to Kaseya’s customers. Many of them may not have known that their networks were monitored by Kaseya’s software.
Kaseya claims to have some 40,000 users, so the 1,500 victims are less than 5 percent of the base. But if you’re a victim, that’s no consolation. The hackers were asking for $45,000 from each victim or offering a “bulk discount” to $70 million as a single payment to unlock affected systems. Some bargain!
Again, why won’t it happen to our clients? We don’t use outside services for precisely what happened with Kaseya. Problems with automated systems happen too quickly. Even though Kaseya detected a problem and shut down systems, 1,500 were still infected.
We monitor our clients’ systems, and we have software that both provides us with alarms and allows us to gain access to fix problems. We also know each of our clients and system characteristics personally and have a specific plan for each emergency. And instead of relying on someone’s computers to talk to your computers, we talk to you.
We are more than happy to review our emergency response plan for your IT system and make any adjustments that will make you feel more secure. At the same time, if you know anyone who’s nervous about their IT, have them contact us. We can be reached by phone – 973-433-6676 – or email.
Categories
Comments
Recent Posts
Recent Comments
- D. J. Hawkins on Health Wearables in Style at CES
- Allan Berger on Tech Preps for Trips
- Stan Schnitzer on We’re Not Neutral on Net Neutrality
- Allan Berger on Equifax and Protecting Your Identity
- Michael L. on Brave New Wireless World
Archives
- October 2024
- September 2024
- July 2024
- June 2024
- April 2024
- March 2024
- February 2024
- January 2024
- December 2023
- November 2023
- October 2023
- September 2023
- August 2023
- July 2023
- June 2023
- May 2023
- April 2023
- March 2023
- February 2023
- January 2023
- December 2022
- November 2022
- October 2022
- September 2022
- August 2022
- June 2022
- May 2022
- April 2022
- February 2022
- January 2022
- December 2021
- November 2021
- October 2021
- September 2021
- August 2021
- July 2021
- June 2021
- May 2021
- April 2021
- March 2021
- February 2021
- January 2021
- December 2020
- November 2020
- October 2020
- September 2020
- August 2020
- July 2020
- June 2020
- April 2020
- March 2020
- February 2020
- January 2020
- December 2019
- November 2019
- October 2019
- September 2019
- August 2019
- July 2019
- June 2019
- May 2019
- April 2019
- March 2019
- February 2019
- January 2019
- December 2018
- November 2018
- October 2018
- September 2018
- August 2018
- June 2018
- May 2018
- April 2018
- March 2018
- February 2018
- January 2018
- December 2017
- November 2017
- October 2017
- September 2017
- July 2017
- June 2017
- May 2017
- March 2017
- February 2017
- January 2017
- December 2016
- November 2016
- October 2016
- September 2016
- August 2016
- June 2016
- May 2016
- April 2016
- March 2016
- February 2016
- January 2016
- December 2015
- November 2015
- October 2015
- September 2015
- July 2015
- June 2015
- May 2015
- April 2015
- March 2015
- February 2015
- January 2015
- December 2014
- November 2014
- October 2014
- September 2014
- August 2014
- July 2014
- June 2014
- May 2014
- April 2014
- March 2014
- February 2014
- January 2014
- December 2013
- November 2013
- October 2013
- September 2013
- August 2013
- July 2013
- June 2013
- April 2013
- March 2013
- February 2013
- January 2013
- December 2012
- November 2012
- October 2012
- September 2012