More than 1,000 companies affected by the epidemic Cyber attack on U.S. software company Kaseya. The REvil hacker has links with the Russian hacker organization.
On July 2, Kaseya experts advised their customers to disable the software due to possible attacks, which was later confirmed. The company said that the hacker’s actions affected a small number of its customers, but as the investigation progressed, the scale of the attack became larger and larger.
according to Bloomberg, Hackers attacked eight companies that provide IT support and gained access to thousands of customer networks of these organizations.
Andrew Howard, Chief Executive Officer of Kudelski Security, based in Switzerland, said: “This is one of the most widespread attacks we have ever seen executed by a non-nation state, and it seems to be purely to make money for services.
“It’s hard to imagine a better way for attackers to distribute malware than through a trusted IT provider.”
Network security experts immediately assumed that the hacker organization REvil was behind the attack. Later, Huntress Labs discovered a $70 million bitcoin ransom demand on a dark web hacker website to decrypt all the victims’ files.
REvil has named its price. 70,000,000 USD in Bitcoin.
The attached picture comes directly from the REvils website: pic.twitter.com/1kOxaKxraS
-vx-underground (@vxunderground) July 5, 2021
REvil (also known as Sodinokibi) is related to the Russian Federation because they do not attack Russian organizations or companies in the former Soviet Union countries and often publish information in Russian.
US President Joe Biden said he was not sure whether the Russian authorities were involved in the attack on Kasya. He also said that US intelligence agencies are investigating the incident.
Recall that in March, REvil encrypted Acer’s files and demanded payment of $50 million in Monero cryptocurrency. In April, the organization attacked Apple.
In June of this year, JBS, the world’s largest meat processing company, became a victim of REvil and paid hackers a ransom of $11 million in Bitcoin.