Security News > 2021 > July > Kaseya supply chain attack impacts more than 1,000 companies
A ransomware attack against a single company's software product is having a ripple effect across more than 1,000 organizations.
The supply chain nature of Kaseya's business means that far more companies have now been caught in the aftermath of the attack.
"This attack highlights once more that hackers are ready and waiting to exploit lax security and unpatched vulnerabilities to devastating effect," said Jack Chapman, Egress VP of threat intelligence.
The culprit behind the attack is REvil, the infamous ransomware group answerable to many other high level attacks.
In its "Happy Blog," the group took responsibility for the attack against Kaseya, claiming that more than 1 million systems were infected, according to security firm Sophos.
Further, Kaseya enlisted the aid of its internal incident response team as well as outside experts in forensic investigations to learn the root cause of the attack.
News URL
Related news
- PlushDaemon APT Targets South Korean VPN Provider in Supply Chain Attack (source)
- IPany VPN breached in supply-chain attack to push custom malware (source)
- Supply chain attack hits Chrome extensions, could expose millions (source)
- Abandoned AWS S3 buckets can be reused in supply-chain attacks that would make SolarWinds look 'insignificant' (source)
- North Korea targets crypto developers via NPM supply chain attack (source)
- Bybit Hack Traced to Safe{Wallet} Supply Chain Attack Exploited by North Korean Hackers (source)
- China-Linked Silk Typhoon Expands Cyber Attacks to IT Supply Chains for Initial Access (source)