With an investigation underway, the company advised all on-premises customers to shut down their VSA servers until further notice, while also shutting down its SaaS servers as a precautionary measure. Kaseya REvil ransomware attack timeline Friday, July 2: Kaseya’s incident response team detects a potential security incident involving its remote computer management tool Kaseya VSA Following is a timeline of the attack and the ramifications for the affected parties based on Kaseya’s incident update page and other sources. ![]() The event served as a reminder of the threats posed by software supply chains and sophisticated ransomware groups. REvil targeted a vulnerability ( CVE-2021-30116) in a Kaseya remote computer management tool to launch the attack, with the fallout lasting for weeks as more and more information on the incident came to light. The attack on US-based software provider Kaseya by notorious Russia-linked ransomware group REvil in July 2021 is estimated to have affected up to 2,000 global organizations.
0 Comments
Leave a Reply. |