A ransomware attack on a US IT company potentially targeted 1,000 businesses, researchers said on Saturday, with one of Sweden’s biggest supermarket chains revealing it had to temporarily close about 800 stores after losing access to its checkouts.
Kaseya on Friday evening said that it had limited the attack to “a very small percentage of our customers” who use its signature VSA software — “currently estimated at fewer than 40 worldwide.”
However, cybersecurity firm Huntress Labs said in a Reddit forum that it was working with partners targeted in the attack, and that the software was manipulated “to encrypt more than 1,000 companies.”
Russian-based hackers have been blamed for a string of ransomware attacks, and US President Joe Biden has raised the threat in talks with Russian President Vladimir Putin.
Biden on Saturday ordered a full investigation, while adding that “the initial thinking was it was not the Russian government, but we’re not sure yet.”
Brett Callow, an analyst for cybersecurity company Emsisoft, said that it remained unknown how many companies were affected and that the scale of attack could be “without precedent.”
Ransomware attacks typically involve locking away data in systems using encryption, making companies pay to regain access.
Kaseya describes itself as a leading provider of IT and security management services to small and medium-sized businesses.
VSA, the company’s flagship offering, is designed to let companies manage networks of computers and printers from a single point.
“One of our subcontractors was hit by a digital attack, and that’s why our checkouts aren’t working any more,” Coop Sweden, which accounts for about 20 percent of the country’s supermarket sector, said in a statement.
“We regret the situation and will do all we can to reopen swiftly,” the cooperative added.
Coop Sweden did not name the subcontractor or reveal the hacking method used against it.
However, the Swedish subsidiary of the Visma software group said the problem was linked to the Kaseya attack.
Kaseya became aware of a possible incident with VSA at midday on Friday on the US east coast and “immediately shut down” its servers as a “precautionary measure,” it said.
It also “notified our on-premises customers via email, in-product notes, and phone to shut down their VSA servers to prevent them from being compromised.”
SOURCE IDENTIFIED
“We believe that we have identified the source of the vulnerability and are preparing a patch to mitigate it,” the company said in a statement.
According to the New Zealand government’s Computer Emergency Response Team, the attackers were from a hacking group known as REvil.
REvil was also, according to the FBI, behind last month’s attack on JBS, one of the world’s biggest meat processors, which ended with the Brazil-based company paying bitcoin worth US$11 million to the hackers.
The US Cybersecurity and Infrastructure Security Agency said that it was “taking action to understand and address the recent supply-chain ransomware attack” against Kaseya VSA and the service providers using its software.
“This is one of the largest, most widespread ransomware attacks I’ve seen in my career,” said Alfred Saikali of law firm Shook, Hardy & Bacon.
“I have never seen this many companies hire us in a single day for the same incident. As a general rule, you want to avoid paying the ransom at all costs,” he said.
CONDITIONS: The Russian president said a deal that was scuppered by ‘elites’ in the US and Europe should be revived, as Ukraine was generally satisfied with it Russian President Vladimir Putin yesterday said that he was ready for talks with Ukraine, after having previously rebuffed the idea of negotiations while Kyiv’s offensive into the Kursk region was ongoing. Ukraine last month launched a cross-border incursion into Russia’s Kursk region, sending thousands of troops across the border and seizing several villages. Putin said shortly after there could be no talk of negotiations. Speaking at a question and answer session at Russia’s Eastern Economic Forum in Vladivostok, Putin said that Russia was ready for talks, but on the basis of an aborted deal between Moscow’s and Kyiv’s negotiators reached in Istanbul, Turkey,
SPIRITUAL COUPLE: Martha Louise has said she can talk with angels, while her husband, Durek Verrett, claims that he communicates with a broad range of spirits Social media influencers, reality stars and TV personalities were among the guests as the Norwegian king’s eldest child, Princess Martha Louise, married a self-professed US shaman on Saturday in a wedding ceremony following three days of festivities. The 52-year-old Martha Louise and Durek Verrett, who claims to be a sixth-generation shaman from California, tied the knot in the picturesque small town of Geiranger, one of Norway’s major tourist attractions located on a fjord with stunning views. Following festivities that started on Thursday, the actual wedding ceremony took place in a large white tent set up on a lush lawn. Guests
Thailand has netted more than 1.3 million kilograms of highly destructive blackchin tilapia fish, the government said yesterday, as it battles to stamp out the invasive species. Shoals of blackchin tilapia, which can produce up to 500 young at a time, have been found in 19 provinces, damaging ecosystems in rivers, swamps and canals by preying on small fish, shrimp and snail larvae. As well as the ecological impact, the government is worried about the effect on the kingdom’s crucial fish-farming industry. Fishing authorities caught 1,332,000kg of blackchin tilapia from February to Wednesday last week, said Nattacha Boonchaiinsawat, vice president of a parliamentary
A French woman whose husband has admitted to enlisting dozens of strangers to rape her while she was drugged on Thursday told his trial that police had saved her life by uncovering the crimes. “The police saved my life by investigating Mister Pelicot’s computer,” Gisele Pelicot told the court in the southern city of Avignon, referring to her husband — one of 51 of her alleged abusers on trial — by only his surname. Speaking for the first time since the extraordinary trial began on Monday, Gisele Pelicot, now 71, revealed her emotion in almost 90 minutes of testimony, recounting her mysterious