ESET analyzes the ransomware attack on Kaseya: Researchers have so far identified attacks in 17 countries. This also includes Germany and German companies.
Customers of the IT service provider Kaseya are currently the target of large-scale attacks with extortion Trojans. According to ESET analyzes, the hackers struck in at least 17 countries, including Germany, USA, Great Britain and Canada. The ransomware was distributed specifically via the IT management software of the service provider. This is often used in managed service provider (MSP) environments. ESET's security researchers are continuing to monitor what is happening.
Attack in 17 countries - including Germany
“So far we have seen ransomware attacks in at least 17 countries. Companies in Germany are also affected, ”says Thomas Uhlemann, ESET Security Specialist. “Companies using Kaseya IT management software should shut down potentially affected VSA servers. If these are infected, the ransomware cuts the administrative access and encrypts the data. The hackers' approach is similar to that in the SolarWinds incident, but in the current case the attackers are more interested in financial gains. "
What should affected companies do?
The IT service provider Kaseya has already contacted its customers and recommended shutting down the potentially affected servers. Because as soon as this is infected, the ransomware switches off administrative access and begins encrypting data. Once the encryption process is complete, the system desktop background will show the ransom note. Further information is available in the English-speaking part of ESET's WeliveSecurity.
More at ESET.com
About ESET ESET is a European company with headquarters in Bratislava (Slovakia). ESET has been developing award-winning security software since 1987 that has already helped over 100 million users enjoy secure technology. The broad portfolio of security products covers all common platforms and offers companies and consumers worldwide the perfect balance between performance and proactive protection. The company has a global sales network in over 180 countries and branches in Jena, San Diego, Singapore and Buenos Aires. For more information, visit www.eset.de or follow us on LinkedIn, Facebook and Twitter.