A ransomware attack on a US IT company potentially targeted 1,000 businesses, researchers said on Saturday, with one of Sweden’s biggest supermarket chains revealing it had to temporarily close about 800 stores after losing access to its checkouts.
Kaseya on Friday evening said that it had limited the attack to “a very small percentage of our customers” who use its signature VSA software — “currently estimated at fewer than 40 worldwide.”
However, cybersecurity firm Huntress Labs said in a Reddit forum that it was working with partners targeted in the attack, and that the software was manipulated “to encrypt more than 1,000 companies.”
Russian-based hackers have been blamed for a string of ransomware attacks, and US President Joe Biden has raised the threat in talks with Russian President Vladimir Putin.
Biden on Saturday ordered a full investigation, while adding that “the initial thinking was it was not the Russian government, but we’re not sure yet.”
Brett Callow, an analyst for cybersecurity company Emsisoft, said that it remained unknown how many companies were affected and that the scale of attack could be “without precedent.”
Ransomware attacks typically involve locking away data in systems using encryption, making companies pay to regain access.
Kaseya describes itself as a leading provider of IT and security management services to small and medium-sized businesses.
VSA, the company’s flagship offering, is designed to let companies manage networks of computers and printers from a single point.
“One of our subcontractors was hit by a digital attack, and that’s why our checkouts aren’t working any more,” Coop Sweden, which accounts for about 20 percent of the country’s supermarket sector, said in a statement.
“We regret the situation and will do all we can to reopen swiftly,” the cooperative added.
Coop Sweden did not name the subcontractor or reveal the hacking method used against it.
However, the Swedish subsidiary of the Visma software group said the problem was linked to the Kaseya attack.
Kaseya became aware of a possible incident with VSA at midday on Friday on the US east coast and “immediately shut down” its servers as a “precautionary measure,” it said.
It also “notified our on-premises customers via email, in-product notes, and phone to shut down their VSA servers to prevent them from being compromised.”
SOURCE IDENTIFIED
“We believe that we have identified the source of the vulnerability and are preparing a patch to mitigate it,” the company said in a statement.
According to the New Zealand government’s Computer Emergency Response Team, the attackers were from a hacking group known as REvil.
REvil was also, according to the FBI, behind last month’s attack on JBS, one of the world’s biggest meat processors, which ended with the Brazil-based company paying bitcoin worth US$11 million to the hackers.
The US Cybersecurity and Infrastructure Security Agency said that it was “taking action to understand and address the recent supply-chain ransomware attack” against Kaseya VSA and the service providers using its software.
“This is one of the largest, most widespread ransomware attacks I’ve seen in my career,” said Alfred Saikali of law firm Shook, Hardy & Bacon.
“I have never seen this many companies hire us in a single day for the same incident. As a general rule, you want to avoid paying the ransom at all costs,” he said.
FRAUD ALLEGED: The leader of an opposition alliance made allegations of electoral irregularities and called for a protest in Tirana as European leaders are to meet Albanian Prime Minister Edi Rama’s Socialist Party scored a large victory in parliamentary elections, securing him his fourth term, official results showed late on Tuesday. The Socialist Party won 52.1 percent of the vote on Sunday compared with 34.2 percent for an alliance of opposition parties led by his main rival Sali Berisha, according to results released by the Albanian Central Election Commission. Diaspora votes have yet to be counted, but according to initial results, Rama was also leading there. According to projections, the Socialist Party could have more lawmakers than in 2021 elections. At the time, it won 74 seats in the
EUROPEAN FUTURE? Albanian Prime Minister Edi Rama says only he could secure EU membership, but challenges remain in dealing with corruption and a brain drain Albanian Prime Minister Edi Rama seeks to win an unprecedented fourth term, pledging to finally take the country into the EU and turn it into a hot tourist destination with some help from the Trump family. The artist-turned-politician has been pitching Albania as a trendy coastal destination, which has helped to drive up tourism arrivals to a record 11 million last year. US President Donald Trump’s son-in-law, Jared Kushner, also joined in the rush, pledging to invest US$1.4 billion to turn a largely deserted island into a luxurious getaway. Rama is expected to win another term after yesterday’s vote. The vote would
CANCER: Jose Mujica earned the moniker ‘world’s poorest president’ for giving away much of his salary and living a simple life on his farm, with his wife and dog Tributes poured in on Tuesday from across Latin America following the death of former Uruguayan president Jose “Pepe” Mujica, an ex-guerrilla fighter revered by the left for his humility and progressive politics. He was 89. Mujica, who spent a dozen years behind bars for revolutionary activity, lost his battle against cancer after announcing in January that the disease had spread and he would stop treatment. “With deep sorrow, we announce the passing of our comrade Pepe Mujica. President, activist, guide and leader. We will miss you greatly, old friend,” Uruguayan President Yamandu Orsi wrote on X. “Pepe, eternal,” a cyclist shouted out minutes later,
Myanmar’s junta chief met Chinese President Xi Jinping (習近平) for the first time since seizing power, state media reported yesterday, the highest-level meeting with a key ally for the internationally sanctioned military leader. Senior General Min Aung Hlaing led a military coup in 2021, overthrowing Myanmar’s brief experiment with democracy and plunging the nation into civil war. In the four years since, his armed forces have battled dozens of ethnic armed groups and rebel militias — some with close links to China — opposed to its rule. The conflict has seen Min Aung Hlaing draw condemnation from rights groups and pursued by the
RSS