Security News > 2021 > December > Kronos ransomware attack may cause weeks of HR solutions downtime

Workforce management solutions provider Kronos has suffered a ransomware attack that will likely disrupt many of their cloud-based solutions for weeks.

Kronos is a workforce management and human resources provider who provides cloud-based solutions for managing timekeeping, payroll, employee benefits, analytics, and more.

In 2020, Kronos merged with Ultimate Software to create a new company named UKG. Kronos' software is used by many companies, including car manufacturers, education institutions, and local governments.

Today, Kronos disclosed that the UKG solutions using the 'Kronos Private Cloud' are unavailable due to a weekend ransomware attack on December 11th. "As we previously communicated, late on Saturday, December 11, 2021, we became aware of unusual activity impacting UKG solutions using Kronos Private Cloud," disclosed Bob Hughes, Executive Vice President for UKG. "We took immediate action to investigate and mitigate the issue, and have determined that this is a ransomware incident affecting the Kronos Private Cloud-the portion of our business where UKG Workforce Central, UKG TeleStaff, Healthcare Extensions, and Banking Scheduling Solutions are deployed."

"Kronos offers a hosting environment built upon a secure infrastructure, which undergoes examinations from an independent auditor in accordance with the AICPA's SSAE18 and the American Institute of Certified Public Accountants' TSP Section 100a, Trust Services Principles, Criteria, and Illustrations for Security, Availability, Processing Integrity, Confidentiality, and Privacy," reads the description of the Kronos Private Cloud infrastructure.

Due to this, Kronos says their KPC solutions are not available and will likely take several weeks before systems become available again.

News URL

https://www.bleepingcomputer.com/news/security/kronos-ransomware-attack-may-cause-weeks-of-hr-solutions-downtime/