[NCSC-NL] Disable Kaseya VSA: possible ransomware attack via supply chain underway

Kaseya, supplier of IT management software, has announced it is currently investigating a potential ransomware incident. Cybersecurityfirm Huntress Labs poses that Kaseya has been the victim of a supply-chain attack, which results in customers using the VSA product potentially being targeted with the REvil-ransomware. VSA is a remote management tool that is broadly used by IT management providers and managed service providers. Customers have a so called ‘VSA-agent’ installed on their systems.

Source: Read More (National Cyber Security Centre – News items)

You might be interested in …

[ZDNet] Google is using machine learning to stop DDoS attacks

All posts, ZDNet

Google Cloud customers can now test out Google’s answer to distributed denial of service (DDoS) attacks. Source: Read More (Latest topics for ZDNet in Security)

Read More

[ThreatPost] Volkswagen Vendor Exposed Data of 3.3m Drivers

All posts, ThreatPost

Nearly all of the leaked data was for owners or wannabe owners of the automaker’s luxury brand of Audis, now at greater risk for phishing, ransomware or car theft. Source: Read More (Threatpost)

Read More

[BleepingComputer] Insurer AXA hit by ransomware after dropping support for ransom payments

Branches of insurance giant AXA based in Thailand, Malaysia, Hong Kong, and the Philippines have been struck by a ransomware cyber attack. As seen by BleepingComputer yesterday, the Avaddon ransomware group claimed on their leak site that they had stolen over 3 TB of sensitive data from AXA’s Asian operations. […] Source: Read More (BleepingComputer)

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.