Report a cyber attack on hundreds of US companies

Report a cyber attack on hundreds of US companies

Washington- A cyber attack paralyzed the networks of at least 200 US companies on Friday, according to a cybersecurity researcher whose company was responding to the incident.

John Hammond of security firm Huntress Labs said a group of Russian-speaking hackers who committed extortion using ransomware appeared to be behind the attack. He commented that the criminals attacked a software provider called Kaseya, using their package. Managing the network as a channel for spreading malware through cloud service providers. Other researchers agreed with Hammond’s assessment.

“Kaseya deals with large businesses with small businesses internationally, so this could eventually extend to any business size or scope,” Hammond said in a Twitter direct message. “This is a massive and devastating attack from outside sources,” he added.

Such third party (or supply chain) cyber attacks usually infiltrate widely used software and spread malicious code or malware, where it is automatically updated.

At the moment, it was not clear how many Kaseya customers could be affected or who could be affected. In a statement posted on its website, Kaseya urged its customers to immediately shut down the servers running the affected software. He pointed out that the attack was limited to “a small number” of his agents.

Brett Callow, a ransomware expert at cybersecurity firm Emsisoft, said he was unaware of any previous third-party ransomware attacks of this magnitude. He said there were others, but smaller.

“It’s like SolarWinds with ransomware,” he said. He cited a Russian cyber-espionage campaign discovered in December that spread by infecting network management software to infiltrate US federal agencies and dozens of companies.

See also  “Thank you for your support”: 73% of users want Elon Musk to buy Twitter

Cybersecurity researcher Jake Williams, president of Rendition Infosec, said he was already working with six companies affected by the ransomware. He added that it was no coincidence that this happened before the July 4 weekend, when IT staff is often scarce.

“I have no doubt that the timing was intentional,” he said.

Izer Hector

"Coffeemaker. Certified Alcoholic. Passionate Foodie. Pop Culture Ninja."

Leave a Reply

Your email address will not be published. Required fields are marked *