A few days ago a big thing happened ransomware attack via Kaseya, a company that offers various network monitoring systems, affecting and putting at risk many of its customers, around 200 organizations. Defined as the largest ransomware attack in history, it sees the REvil cybercrime group, famous for its precedents, as the culprit cyber attacks to well-known companies, such as Apple. The advice that Kaseya immediately gave to his customers was to close the systems, since use at the moment would pose certain risks. The moment in which everything happened is also to be considered, because it is no coincidence that it coincided with the American holiday period of July 4th. The criminal company explicitly asked for 70 million dollars, or 59 million euros, in Bitcoin for the ransom. The consequences are high: the Swedish food chain, Coop, for example, found itself having to close around 800 stores. The FBI is proceeding to study and evaluate this scenario, trying to gather as much information as possible. Furthermore, he advised all associations involved to follow all guidelines provided by Kaseya.
HOW DID IT HAPPEN? Through a new Kaseya software update, victims found themselves with the REvil ransomware. The only solution for now is to isolate the systems, or update them to avoid receiving a virus as much as possible malware attack. In addition, points were presented to try to calm the spread, such as checking whether you have working backups and protecting access to monitoring infrastructures. However, the situation is even more difficult: there is a strong rapidity in the internal passage of the various infections, and what’s more, the 4th of July weekend slows things down further. In conclusion, there is hope that Italy will update itself in this respect, especially considering what happened in the USA.
The ransomware attack on Kaseya represents the latest episode of IT securitywhich has impacted the entire world. These events lead to giving greater credit to cyber security company and particular importance to the management, monitoring and analysis of each company’s Cyber Risk Indicators, becoming a real part of the company itself. Among the main ones are:
– Mandatory for GDPR and AgID compliance obligations
– Essential for ISO27001 and NIS requirements
– Important to OWASP cyber best practices.
It is hoped that what happened will help prevent it in the future.
latest posts published
Lokky, the Italian data driven insurtech for professionals and SMEs
An ally for cyber security: Load Balancing
Business Trend 2023 for SMEs, professionals and commercial activities
Occupational risks for pastry shops
How to read a pay slip
What are the most common cyber risks and how to protect yourself
Clinical Risk: What it is and What are the consequences
Commercial activities most affected by theft
October is European Cyber Security Month
