REvil eagle has boasted of a Kaseya attack that has affected more than 1,000 companies worldwide and encouraged research and US law firms. The hackers are asking for a $ 70 million ransom to print a full-fledged billboard that will unlock all affected computers.
As they say Notes, REvil sent a message of acceptance of what happened on the black website. The redemptive movement, thought to be the cause of the unknown, it also helps to know some of what has been said, claiming that more than a million systems were infected. Kaseya he called for an end to the attack Last Friday.
REvil, also called Sodinach, is a well-known cybercriminal group that has been using redemption as a tool for big corporations, including apple and Acer. Soon, that fighting JBS, the world’s largest animal processing company, which paid $ 11 million in bitcoin to reduce falls and threaten its data.
“On Friday (02.07.2021) we started an attack on MSP providers. More than a million people fell ill,” the REvil group said, according to Record. “If anyone wants to discuss the global decryptor – our price is $ 70,000 000 in BTC and we will publicly announce a decryptor that deletes the files of all victims, so that everyone can recover in less than an hour. If you want to do this – Contact us via affected workread ‘ give instructions. ”
Dana Liedholm, prophet of Kaseya, told Gizmodo on Monday that the FBI and other independent organizations have confidently stated that REvil has indeed done so and that the company trusts the experts.
G / O Media can be sent
“As for the ransom, we are not talking about this because I am investigating cases and we cannot do so at this time,” Liedholm said.
Kaseya’s attack is what is called a program selling stock goods, how the cybercriminals infiltrate the software of the software vendor and send a malicious number to disrupt the software before the seller sends it to its customers. Infected software affects customers’ data or systems. The same robbers SolarWinds’ Software used the plot to infiltrate US corporations and corporations.
Kaseya, then, sells its products to your clients, or MSPs, which are companies that provide remote IT services to hundreds of small businesses that do not have the financial means to operate on their own. MSPs use the Kaseya VSA cloud platform to monitor and transmit software updates to these businesses and to address other issues.
In Kaseya, preliminary reports say REvil found opportunities for the company’s architecture and used them for shipping updates and malware to VSA servers running in client locations. Bad updates then installed a free program from the VSA server on all connected computers, Record imati. This, in turn, propagates the program to other companies that were connected to VSA machines. However, the exact nature of the show is still unknown, and much is happening continuously.
Inside Right Monday at 1 pm ET on the matter, Kaseya said all VSA servers should continue to be offline until customers receive instructions from Kaseya on when it is time to restore the service. On Sunday, Kaseya CEO Fred Voccola said the company was aware of the nature of the attacks and was redesigning them.
If Kaseya, or any of the other companies involved, pays a $ 70 million REvil levy, it will be the most expensive one in existence.
Source link
