US companies hit by ‘colossal’ cyber-attackon July 3, 2021 at 7:37 am

- Advertisement -
- Advertisement -
- Advertisement -
- Advertisement -

A cyber-security firm says it believes the Russia-linked REvil ransomware gang is responsible.

Hands typing on a keyboard

image copyrightGetty Images

About 200 US businesses have been hit by a “colossal” ransomware attack, according to a cyber-security firm.

Huntress Labs said the hack targeted Florida-based IT company Kaseya before spreading through corporate networks that use its software.

Kaseya said in a statement on its own website that it was investigating a “potential attack”.

Huntress Labs said it believed the Russia-linked REvil ransomware gang was responsible.

The US Cybersecurity and Infrastructure Agency, a federal agency, said in a statement that it was taking action to address the attack.

The cyber-breach emerged on Friday afternoon as companies across the US were clocking off for the long Independence Day weekend.

Presentational grey line
Analysis box by Joe Tidy, Cyber reporter

The two big things that are keeping cyber-security professionals up at night lately are ransomware attacks and supply chain attacks. This latest incident combines both nightmares into one big Independence Holiday weekend-ruining event for hundreds of US IT teams.

Ransomware is the scourge of the internet. Multiple organised criminal gangs are constantly attempting to gain access to computer networks to hold them hostage. The rate of attack is relentless but it can take a lot of time and effort on the criminals part to successfully hijack one victim’s computer system.

In this latest incident the hackers showed that by going after the software supplier of multiple organisations they can pop dozens, perhaps hundreds of victims in one go. We’ve seen horrendous supply chain attacks in the past but this one has the potential to be the biggest incident involving ransomware yet.

It shows that ransomware gangs are thinking creatively about how to have the most impact possible and command the biggest ransom possible.

Presentational grey line

Kaseya said one of its applications that runs corporate servers, desktop computers and network devices might have been compromised in the attack.

The company said it was urging customers that use its VSA tool to immediately shut down their servers.

Kaseya said in its statement that a “small number” of companies had been affected, though Huntress Labs said the number was greater than 200.

It is not clear what specific companies have been affected and a Kaseya representative contacted by the BBC declined to give details.

Kaseya’s website says it has a presence in over 10 countries and more than 10,000 customers.

“This is a colossal and devastating supply chain attack,” Huntress Labs’ senior security researcher John Hammond said in an email to Reuters news agency.

At a summit in Geneva last month, US President Joe Biden said he told Russian President Vladimir Putin he had a responsibility to rein in such cyber-attacks.

Mr Biden said he gave Mr Putin a list of 16 critical infrastructure sectors, from energy to water, that should not be subject to hacking.

REvil – also known as Sodinokibi – is one of the most prolific and profitable cyber-criminal groups in the world.

The gang was blamed by the FBI for a hack in May that paralysed operations at JBS – the world’s largest meat supplier.

The group sometimes threatens to post stolen documents on its website – known as the “Happy Blog” – if victims don’t comply with its demands.

REvil was also linked to a co-ordinated attack on nearly two dozen local governments in Texas in 2019.

- Advertisement -

Discover

Sponsor

Latest

Tracy Beaker: Actress Dani Harmer trolled online with ‘fat’ commentson March 10, 2021 at 2:18 am

Tracy Beaker actress Dani Harmer says cruel comments have left her anxious about social media.As Tracy Beaker, Dani Harmer has played one of the...

JC Penney in talks to fund potential bankruptcy filing next week

KEY POINTS J.C. Penney could file for bankruptcy as soon as May 15. It is in talks to fund its business during the bankruptcy...

European Team Championships: Great Britain win women’s 4x100m finalon May 29, 2021 at 5:41 pm

Watch Great Britain's quartet of Beth Dobbin, Imani-Lara Lansiquot, Bianca Williams and Desiree Henry win the 4x100m final at the European Team Championships in...

Iran nuclear deal: Clock ticks as rivals square upon February 19, 2021 at 1:11 am

A looming election could bury any chance of saving the deal, while Iran and the US play tough.image copyrightEPAThe window for saving the international...

MasterChef winner: Tom Rhodes crowned 17th championon April 14, 2021 at 9:27 pm

The broadcast of the show's final was postponed following the Duke of Edinburgh's death on Friday.A former Nando's worker has become the latest winner...