Security News > 2021 > July > Scale, Details of Massive Kaseya Ransomware Attack Emerge

Cybersecurity teams worked feverishly Sunday to stem the impact of the single biggest global ransomware attack on record, with some details emerging about how the Russia-linked gang responsible breached the company whose software was the conduit.

Less than a month ago, Biden pressed Russian President Vladimir Putin to stop giving safe haven to REvil and other ransomware gangs whose unrelenting extortionary attacks the U.S. deems a national security threat.

The REvil offer to offer blanket decryption for all victims of the Kaseya attack in exchange for $70 million suggested its inability to cope with the sheer quantity of infected networks, said Allan Liska, an analyst with the cybersecurity firm Recorded Future.

Sophisticated ransomware gangs on REvil's level usually examine a victim's financial records - and insurance policies if they can find them - from files they steal before activating the ransomware.

Kaseya says the attack only affected "On-premise" customers, organizations running their own data centers, as opposed to its cloud-based services that run software for customers.

Cybersecurity expert Dmitri Alperovitch of the Silverado Policy Accelerator think tank said that while he does not believe the Kaseya attack is Kremlin-directed, it shows that Putin "Has not yet moved" on shutting down cybercriminals.

News URL

http://feedproxy.google.com/~r/securityweek/~3/VBTVHjU4vDs/scale-details-massive-kaseya-ransomware-attack-emerge