Hackers have just carried out one of the largest known cyber attacks on the supply chain to date. The Financial Times and Wall Street Journal report that the IT management software giant Kaseya Fell victim a ransomware attack that compromised its remote VSA maintenance tool. The company initially claimed that “fewer than 40” of its customers were directly affected, but security firm Huntress said three managed service providers it worked with also succumbed to the attack and compromised over 200 companies.
The number could be higher. Huntress found that there were eight cloud service providers affected, which may have affected many more companies. Swedish supermarket chain Coop closed nearly 800 stores after targeting one of its contractors.
Kaseya said it has identified the likely source of the vulnerability and is developing a patch that will be “thoroughly tested”. In the meantime, however, the company urged all customers to shut down their VSA servers and keep them offline until they could install the update. Software-as-a-Service customers are “never at risk,” added Kaseya, although the company has taken this functionality down as a precaution.
The incident is the latest in a series of high-profile ransomware attacks, including JBS and Colonial pipeline. It also follows the large-scale one SolarWinds Injuries attributed to another group, Nobelium. Online security is fast becoming a major issue in the supply chain, and it is not clear that these issues will go away anytime soon.
Kaseya’s breach also reflects the dangers of relying heavily on a company’s software platform. Although the number of customers directly affected is small, the supply chain network appears to have created a ripple effect that has damaged numerous companies across the board. The situation may not improve until there is tighter security or more competition among Kaseya-like vendors, which reduces the potential harm.
#Hackers #carrying #largest #cyber #attacks #supply #chain #date