Security News > 2021 > December > Timekeeping biz Kronos hit by ransomware and warns customers to engage biz continuity plans
Kronos Private Cloud has been hit by a ransomware attack.
The company, also known as Ultimate Kronos Group, provides timekeeping services to companies employing millions across the UK. Emails sent by Kronos to its corporate customers, seen by The Register, confirm the firm has pulled its private cloud services offline following a ransomware attack.
The message from Kronos said restoring full service would take "Several weeks."
A Sainsbury's spokesperson said: "We're in close contact with Kronos while they investigate a systems issue. In the meantime we have contingencies in place to make sure our colleagues continue to receive their pay."
We understand some of Kronos' product and services can be deployed on-premises.
While there is a possibility that ransomware criminals could compromise those if the vuln they used exists in Kronos' software, rather than a network misconfiguration, in the short term, those on-prem deployments naturally won't be affected by the main Kronos shutdown.