IT Pro is supported by its audience. When you purchase through links on our site, we may earn an affiliate commission. Learn more

Up to 1,500 organizations compromised in Kaseya ransomware attack

The White House has urged potential victims of the attack to report their security concerns to the Internet Crime Complaint Center

Around 1,500 businesses have been affected by the recent ransomware attack on customers of Kaseya’s VSA software, according to the firm.

In a statement, Kaseya said that approximately 50 of its 35,000 customers had been affected by the supply-chain attack on 2 July. 

The company said that once the attack was established, law enforcement and government cybersecurity agencies, including the Federal Bureau of Investigation (FBI) and Cybersecurity and Infrastructure Security Agency (CISA), were notified and immediately engaged.

“Soon after the attack, with the assistance from the FBI and CISA, the root cause of the attack was identified,” the company said.

Kaseya added that while the attack affected only 50 of its customers, many of those are managed service providers, using Kaseya’s technology to manage IT infrastructure for local and small businesses with less than 30 employees, such as dentists’ offices, small accounting offices, and local restaurants.

Of the approximately 800,000 to 1,000,000 local and small businesses that are managed by Kaseya’s customers, only about 800 to 1,500 have been compromised.

“Our global teams are working around the clock to get our customers back up and running,” said Fred Voccola, CEO of Kaseya. “We understand that every second they are shut down, it impacts their livelihood, which is why we’re working feverishly to get this resolved.”

Related Resource

The secure cloud configuration imperative

The central role of cloud security posture management

The secure cloud configuration imperativeFree download

The White House has urged potential victims of the attack to report their security concerns to the Internet Crime Complaint Center.

"Since Friday, the United States Government has been working across the interagency to assess the Kaseya ransomware incident and assist in the response," said Anne Neuberger, deputy national security advisor for cyber and emerging technology in a statement.

"The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) have been working with Kaseya and coordinating to conduct outreach to impacted victims.

Busra Demir, a senior solutions architect at HackerOne, told IT Pro that the news that Kaseya was working with researchers on the 0-day fix shows how much it came down to a race against the clock. 

“Coordinated vulnerability disclosure helps organizations understand what weaknesses they have but it all hinges on how fast those vulnerabilities can be fixed. It’s no surprise that so many organizations measure the success of their security testing programs on how fast they can fix the vulnerabilities that surfaced,” she said.

Featured Resources

What 2023 will mean for the industry

What do most IT decision makers really think will be the important trends and challenges in the coming year?

Free Download

2022 Magic quadrant for Security Information and Event Management (SIEM)

SIEM is evolving into a security platform with multiple features and deployment models

Free Download

IDC MarketScape: Worldwide unified endpoint management services

2022 vendor assessment

Free Download

Magic quadrant for application performance monitoring and observability

Enabling continuous updating of diverse & dynamic application environments

View Now

Recommended

Threat hunting for MSPs
Whitepaper

Threat hunting for MSPs

10 Jan 2023
IBM LinuxONE for dummies
Whitepaper

IBM LinuxONE for dummies

4 Jan 2023
Six myths of SIEM
Whitepaper

Six myths of SIEM

3 Jan 2023
Storage's role in addressing the challenges of ensuring cyber resilience
Whitepaper

Storage's role in addressing the challenges of ensuring cyber resilience

3 Jan 2023

Most Popular

Dutch hacker steals data from virtually entire population of Austria
data breaches

Dutch hacker steals data from virtually entire population of Austria

26 Jan 2023
GTA V vulnerability exposes PC users to partial remote code execution attacks
vulnerability

GTA V vulnerability exposes PC users to partial remote code execution attacks

23 Jan 2023
European partners expect growth this year, here are three ways they will achieve it
Sponsored

European partners expect growth this year, here are three ways they will achieve it

17 Jan 2023