At least 200 US companies affected by cyber attack

A computer network management tool from Kaseya was attacked by a cyber attack on Friday, prompting the US IT company to urge companies to shut down servers to prevent ransomware.

Cybersecurity firm Huntress Labs said on a Reddit forum that it was working with partners targeted by the attack, and that some 200 companies are “encrypted.”

Ransomware attacks typically involve locking data in systems using encryption, forcing companies to pay to regain access.

Kaseya describes itself as a leading provider of IT and security management services to small and medium-sized businesses, meaning an attack would target them over the United States’ Independence Day holiday weekend.

“We are investigating the cause of the incident with great caution, but we recommend that you disable your VSA server immediately until further notice from us,” Kaseya said in a post shared on a Reddit forum.

“It’s critical that you do this immediately, because one of the first things the attacker does is close administrative access to the VSA.”

VSA is the company’s flagship product, designed to let businesses manage networks of computers and printers from a single point. The company lists a US headquarters in Florida and an international headquarters in Ireland.

Kaseya said in a statement that the apparent cyber attack may have been limited to a “small number” of its customers.

The US Cybersecurity and Infrastructure Security Agency (CISA) said it is “taking action to understand and address the recent ransomware attack in the supply chain” against Kaseya VSA and the service providers that use its software.

CISA called on companies to follow Kaseya’s guidelines and quickly shut down VSA servers to prevent systems from being compromised.

The UN Security Council held its first formal public meeting on cybersecurity this week, addressing the growing threat of hacks on countries’ key infrastructures — an issue US President Joe Biden recently raised with Russian counterpart Vladimir Putin. .

Several members of the Security Council recognized the great dangers of cybercrime, especially ransomware attacks on key installations and businesses.

Multiple US companies, including computer group SolarWinds, the Colonial Oil Pipeline and global meat giant JBS, have recently been the target of ransomware attacks.

The FBI blames those attacks on hackers on Russian soil.

(AFP)

This website uses cookies to improve your experience. We'll assume you're ok with this, but you can opt-out if you wish. Accept Read More