Download Certificate- CMOs | ECIO | Most Admired Brand | Most Trusted Company

Good information on kaseya supply chain attacks !!!


By MYBRANDBOOK


Good information on kaseya supply chain attacks !!!

Attackers are actively exploiting the Kaseya VSA endpoint monitoring software to conduct a widespread supply chain attack targeting a number of Managed Service Providers (MSPs), according to multiple reports. Organizations usually use Kaseya VSA to perform centralized orchestration of systems in customer environments.

 

Attackers first infected victims via a malicious automatic update to the software, eventually delivering the REvil/Sodinokibi ransomware. Once active in victim environments, the ransomware encrypts the contents of systems on the network, causing widespread operational disruptions to a variety of organizations that use this software. REvil operates using a ransomware-as-a-service (RaaS) model, with affiliates leveraging a variety of tactics, techniques and procedures (TTPs) to infect victims and coerce them into paying to regain access to systems and data that are affected by the ransomware. In many cases, backup servers are also targeted during network-based ransomware attacks highlighting the importance of a regularly tested offline backup and recovery strategy. A text-based README is written into various directories on the system and functions as a ransom note. An example of one of these files can be seen below:

 

 

Kaseya’s current recommendation is to, “IMMEDIATELY shutdown your VSA server until you receive further notice from us. It's critical that you do this immediately, because one of the first things the attacker does is shutoff administrative access to the VSA.”



As mentioned above, backup servers may be targeted, so it’s paramount to have regularly tested offline backups and recovery strategies in place. Attackers can target backups that may be accessible via the network. Utilize the 3-2-1 method to keep your data safe: three copies of your data, on two different systems, with one copy stored offline.

 

Sophos is aware of a supply chain attack that uses Kaseya to deploy a variant of the REvil ransomware into a victim’s environment.The attack is geographically dispersed. Organizations running Kaseya VSA are potentially impacted. Kaseya has stated that the attack started around 14:00 EDT/18:00 UTC on Friday, July 2, 2021 and they are investigating the incident.

 

There's been a noticeable shift towards attacks on perimeter devices in recent years. Vulnerabilities in common internet facing devices allow attackers to compromise large numbers of systems at once with very little effort

 

It appears that the attackers used a zero-day vulnerability to remotely access internet facing VSA Servers. As Kaseya is primarily used by Managed Service Providers (MSPs) this approach gave the attackers privileged access to the devices of the MSP’s customers. Some of the functionality of a VSA Server is the deployment of software and automation of IT tasks. As such, it has a high level of trust on customer devices. By infiltrating the VSA Server, any attached client will perform whatever task the VSA Server requests without question. This is likely one of the reasons why Kaseya was targeted.
 BREAKING NEWS  BREAKING NEWS
India-Made Micron Semiconductor Chips Are About To Enter Internat

India-Made Micron Semiconductor Chips Are About To Enter Internat...

In the first half of2025, the semiconductor packaging division of Micron T...

Indian startup OneAIChat announces unified interface for leading

Indian startup OneAIChat announces unified interface for leading ...

An Indian startup, OneAIChat has built a multi-modal AI aggregator to sav...

TCS and AWS to accelerate customers’ cloud migration and offer

TCS and AWS to accelerate customers’ cloud migration and offer ...

Tata Consultancy Services has forged a strategic alliance with Amazon Web...

ESET provides enhanced enterprise security through a newly develo

ESET provides enhanced enterprise security through a newly develo...

ESET is pleased to present the ESET Mobile Threat Defence module (EMTD) ...

 TECHNO TRENDS  Placeholder image
Microsoft to build a new data centre to support Thailand's tec

Microsoft to build a new data centre to support Thailand's tec

Microsoft has revealed intentions to construct a regional data centre as w...

SAP launches cloud services to help Indian scaleups innovate m

SAP launches cloud services to help Indian scaleups innovate m

SAP at SAP unveils now "GROW with SAP for Scaleups," a new cloud service d...

Denodo and Sonata form alliance to unlock data-to-value creati

Denodo and Sonata form alliance to unlock data-to-value creati

Denodo and Sonata Information Technology India Limited (SITL) have annou...

Google Play Store will now let users download two apps simulta

Google Play Store will now let users download two apps simulta

Google Play Store now lets users download two apps simultaneously. While a...

 E-Magazine 
 TECHNOTAINMENT  Placeholder image
Airtel Xstream Play strengthens regional content library, part

Airtel Xstream Play strengthens regional content library, part

ED attaches Raj Kundra, Shilpa Shetty’s Rs 97 crore worth as

ED attaches Raj Kundra, Shilpa Shetty’s Rs 97 crore worth as

The Enforcement Directorate (ED) has seized businessman Raj Kundra's pro
Salman Khan trolled for singing with B Praak at Anant Ambani's

Salman Khan trolled for singing with B Praak at Anant Ambani's

To celebrate Mukesh Ambani's youngest son Anant Ambani’s 29th birthday

 MOVERS & SHAKERS  Placeholder image
UiPath ropes in Raghu Malpani as Chief Technology Officer

UiPath ropes in Raghu Malpani as Chief Technology Officer

DigiCert names Atri Chatterjee as CMO

DigiCert names Atri Chatterjee as CMO

DigiCert has announced the appointment of Atri Chatterjee as Chief Market
Amagi names its Chief Product Officer

Amagi names its Chief Product Officer

Amagi announced the appointment of Richard Perkett as its Chief Product Of
 OPEN YOUR EYES  Placeholder image

Building of a secure infrastructure is highly essential to stop malicious activity
Chinese Investments targets start-ups to scale up in India
Ragnar Locker Hides in Virtual Machine to Escape from antivirus software
The Changing Face of Cybercrime Amidst Global Pandemic
It is time to protect your critical business priorities from attackers
 INTERVIEWS  Placeholder image
Committed to follow future roadmap with 'Make-in-India' 2.0 Vi

Committed to follow future roadmap with 'Make-in-India' 2.0 Vi

India continues to be a key contributor in Hitachi Vantara’s

India continues to be a key contributor in Hitachi Vantara’s

The brand strategy of Hitachi Vantara is tied to further expanding the Hita
Fortinet leading the charge towards networking and security co

Fortinet leading the charge towards networking and security co

Fortinet offers a wide range of technologies, including next-generation fir
 HOT PICK  Placeholder image
Lenovo launches IdeaPad Pro 5i in India with Intel Core Ultra

Lenovo launches IdeaPad Pro 5i in India with Intel Core Ultra

COLORFUL rolls out an array of gaming laptops

COLORFUL rolls out an array of gaming laptops

COLORFUL launched its incredible series of COLORFUL EVOL P15 gaming laptop
Dell Technologies launches new AI-powered commercial PC portfo

Dell Technologies launches new AI-powered commercial PC portfo

Dell Technologies has launched the broadest portfolio of commercial AI lap
 MAKE IN INDIA BRANDS   Placeholder image
ATRIE TECHNOLOGY PVT. LTD.

ATRIE TECHNOLOGY PVT. LTD.


JUVAS SOLUTIONS PVT. LTD.  

JUVAS SOLUTIONS PVT. LTD.  


FRESHWORKS TECHNOLOGIES PVT. LTD.

FRESHWORKS TECHNOLOGIES PVT. LTD.


SAMRIDDHI AUTOMATIONS PVT. LTD.  

SAMRIDDHI AUTOMATIONS PVT. LTD.  


 EMINENT CIO'S OF INDIA  EMINENT CIO'S OF INDIA

Fortifying business needs with emerging technologies  

I would recommend strengthening an enterprise’s ...

Adoption of latest technologies has boosted the business digital transformation journey

Artificial Intelligence (AI) and Automation have a...

Staying updated with emerging technologies leads to business growth

Comprise all endpoint devices, such as desktop sys...

 ICONS OF INDIA  Placeholder image

Technology Icons Of India 2023: Dilip Asbe

Dilip Asbe is the MD & CEO of National Payments Corporation of India (...

Technology Icons Of India 2023: B.V.R. Subrahmanyam

B.V.R. Subrahmanyam belongs to Andhra Pradesh. He is a 1987-batch IAS ...

Technology Icons Of India 2023: Rajiv Memani

As Chair of the EY Global Emerging Markets Committee, Rajiv connects e...

 PARTNER SPEAKERS  EMINENT CIO'S OF INDIA

Arrow PC Network Empowering Businesses with Visionary Technology Solutions for a Brighter Future

Being in the IT Sector for more than 30 years, the Founder & MD of Arrow PC Ne...

Symmetrix Empowering Collaboration between OEMs, Customers, and SMEs for Seamless Project Execution and Growth

A robust support system exists that fosters seamless communication and collabo...

Transforming Distribution in the digital era!

In today’s dynamic marketplace, coupled with the expanded scope and complexi...

 PSU  Placeholder image

STPI encouraging software exports from India  

Software Technology Parks of India (STPI) is an S&T organization under...

NIC bridging the digital divide and supporting government in eGovernance  

The National Informatics Centre (NIC) is an Indian government departme...

NPCI leading India towards Digital payments  

The National Payments Corporation of India (NPCI) is an initiative tak...

 VIDEOS  Placeholder image

 Top 25 Brands  Solution partners

Most Trusted Brands 2023 : Ingram Micro India Pvt. Ltd.

Ingram Micro helps businesses fully realize the promise of technology. Ingram ...

Most Trusted Brands 2023 : SAP India Pvt. Ltd.

The German software giant aims to double its investments in India over the nex...

Most Trusted Brands 2023 : Nvidia Graphics Pvt. Ltd.

NVIDIA GPUs offer a wide range of features that are specifically designed to a...

 Value-Added Distribution  Value-Added Distribution

ACCERON INFOSOL PVT. LTD.

It is a leading value added distributor in the IT security space and h...

SONATA INFORMATION TECHNOLOGY LIMITED

Sonata Software Limited is a leading Modernization engineering company...

NETPOLEON SOLUTIONS

Netpoleon Group is a Value-Added Distributor (VAD) of Network Security...

 ITFORUM 2024  
 WIITF 2024  
   
 CMO of the Year   Placeholder image
 WOMEN LEADERSHIP  Placeholder image
 EMINENT CIO's OF INDIA   Placeholder image
 TRENDS IN TECHNOLOGY  Placeholder image
MORE VIDEOS  Placeholder image
Brand Book
Brand Book
Brand Book
Brand Book
 ADVERTISEMENTS  Placeholder image
 TECHNOLOGY DISRUPTION Placeholder image

WhatsApp to launch display banner to speak on the privacy policy

WhatsApp to launch display banner to speak on the privacy policy

Web 3.0 a $1.1 trillion growth opportunity for India

Web 3.0 a $1.1 trillion growth opportunity for India

Smart Badges Market

Smart Badges Market

Adversaries behind ransomware are targeting organizations of all size and industries

Adversaries behind ransomware are targeting organizations of all size and industries

 UNICORNS REVOLUTIONISING Placeholder image

Freshworks Inc.

Freshworks Inc.

MarketXpander Services Private Limited

MarketXpander Services Private Limited

NoBroker Technologies Solutions Private Limited

NoBroker Technologies Solutions Private Limited

Lenskart Solutions Private Limited

Lenskart Solutions Private Limited


Copyright www.mybrandbook.co.in @1999-2024 - All rights reserved.
Reproduction in whole or in part in any form or medium without express written permission of Kalinga Digital Media Pvt. Ltd. is prohibited.
Other Initiatives : www.varindia.com | www.spoindia.org
ADMIRED BRANDS

AFTER MARKET SERVICES

CATEGORIES

DISTRIBUTORS & VADs
GOVERNMENT BODIES

INDUSTRY BODIES

MAKE IN INDIA

CONTACT US

SUBSCRIBE NOW