Language Selection

English French German Italian Portuguese Spanish

Proprietary Software Security

Filed under
  • IT for service providers biz Kaseya defers decision about SaaS restoration following supply chain attack • The Register [Ed: Microsoft Windows TCO; a lot of the media neglects to say what's impacted in terms of operating system (how convenient; unless it's Linux and then they attack Linux, the kernel). What corporate media calls Microsoft Windows when it's PROMOTIONAL: "Vista 11" (the vapourware, the myth). What media calls Microsoft Windows when it's NEGATIVE (like thousands of businesses being blackmailed by crackers because they use Windows): "computer".]

    IT management software provider Kaseya has deferred an announcement about restoration of its SaaS services, after falling victim to a supply chain attack that has seen its products become a delivery mechanism for the REvil ransomware.

    The company's most recent update on the incident, dated July 4, 2021 5:45 PM EDT, initially advised that further information would be posted “very late” on the same date after a meeting of the company’s executive committee.

    The latest update says that committee met at 10:00 PM EDT and decided that “to best minimize customer risk … more time was needed before we brought the data centers back online.”

  • Kaseya ransomware attackers demand $70 million, claim they infected over a million devices [iophk: Windows TCO]

    Three days after ransomware attackers started the holiday weekend by compromising Kaseya VSA, we have a clearer idea of how widespread the impact has been. In a new ransom demand, the attackers claim to have compromised more than 1 million computers, and demand $70 million to decrypt the affected devices.

  • Biden: 'Initial thinking' recent ransomware attack not by Russian government [iophk: Windows TCO]

    Speaking to reporters in Traverse City, Mich., Biden said he’s directed the “full resources of the federal government” to investigate the attack, according to a pool report.

  • Ransomware attack hits software manager, affecting 200 companies [iophk: Windows TCO]

    The Cybersecurity and Infrastructure Security Agency (CISA), a division of the the Department of Homeland Security (DHS), said on Twitter that it was “taking action to understand and address the supply-chain #ransomware attack against Kaseya VSA and the multiple #MSPs that employ VSA software.”

  • [Crackers] demanding $70M to restore data in massive cyberattack: report [iophk: Windows TCO]

    The ransomware attack was carried out on Friday, targeting Miami-based technology firm Kaseya. The group used Kaseya's access to clients as well as some of their clients' clients to immobilize the computers of hundreds of technology firms worldwide, Reuters noted.

  • Up to 1,500 businesses affected by ransomware attack, U.S. firm's CEO says [iophk: Windows TCO]

    Kaseya is a company which provides software tools to IT outsourcing shops: companies that typically handle back-office work for companies too small or modestly resourced to have their own tech departments.

    One of those tools was subverted on Friday, allowing the [crackers] to paralyze hundreds of businesses on all five continents. Although most of those affected have been small concerns - like dentists' offices or accountants - the disruption has been felt more keenly in Sweden, where hundreds of supermarkets had to close because their cash registers were inoperative, or New Zealand, where schools and kindergartens were knocked offline.

  • [Crackers] behind holiday crime spree demand $70 million, say they locked 1 million devices [iophk: Windows TCO]

    REvil began its spree Friday by compromising Kaseya, a software company that helps companies manage basic software updates. Because many of Kaseya's customers are companies that manage internet services for other businesses, the number of victims grew quickly. Instead of locking an individual organization, as ransomware gangs usually do, REvil locked each victim computer as a standalone target and initially asked for $45,000 to unlock each one.

  • Up to 1,500 Businesses Affected by Ransomware Attack, US Firm's CEO Says [iophk: Windows TCO]

    Between 800 and 1,500 businesses around the world have been affected by a ransomware attack centered on U.S. information technology firm Kaseya, its chief executive said Monday.

    Fred Voccola, the Florida-based company's CEO, said in an interview that it was hard to estimate the precise impact of Friday's attack because those hit were mainly customers of Kaseya's customers.

Ransomware Using Kaseya’s Software Vulnerability Impacted...

  • Ransomware Using Kaseya’s Software Vulnerability Impacted 800-1500 Businesses Internationally

    On July 22nd, Kaseya, a US-based IT company was hit with a massive ransomware attack. Kaseya provides IT tools to companies to monitor & manage their infrastructure. A tool named VSA was reported to have a severe vulnerability by the Dutch Institute for Vulnerability Disclosure (DIVD).

    Kaseya has almost 37k customers out of which only 50 customers were impacted by the ransomware attack. Most of Kaseya’s customers are MSPs (Managed Service Providers) who provide services to other small or medium businesses.

    The 50 customers who were impacted by the attack have around 800k to 1million customers around the World. According to Kaseya’s CEO Fred Voccola, 800-1500 customers of their MSPs were directly hit by the attack. The attack affects businesses from all over the world, but most affected are from Sweden, Germany, Netherlands, and New Zealand. Several IT companies were impacted in Germany, Supermarkets in Sweden, and Schools and Kindergartens in New Zealand.

    A Russian group of hackers called REvil took responsibility for the attack. A representative of REvil talked to Reuters and victims of the attack in an online chatroom to negotiate. They demanded $70 million for decrypting all the customers’ data with a global key.

Comment viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.

More in Tux Machines

digiKam 7.7.0 is released

After three months of active maintenance and another bug triage, the digiKam team is proud to present version 7.7.0 of its open source digital photo manager. See below the list of most important features coming with this release. Read more

Dilution and Misuse of the "Linux" Brand

Samsung, Red Hat to Work on Linux Drivers for Future Tech

The metaverse is expected to uproot system design as we know it, and Samsung is one of many hardware vendors re-imagining data center infrastructure in preparation for a parallel 3D world. Samsung is working on new memory technologies that provide faster bandwidth inside hardware for data to travel between CPUs, storage and other computing resources. The company also announced it was partnering with Red Hat to ensure these technologies have Linux compatibility. Read more

today's howtos

  • How to install go1.19beta on Ubuntu 22.04 – NextGenTips

    In this tutorial, we are going to explore how to install go on Ubuntu 22.04 Golang is an open-source programming language that is easy to learn and use. It is built-in concurrency and has a robust standard library. It is reliable, builds fast, and efficient software that scales fast. Its concurrency mechanisms make it easy to write programs that get the most out of multicore and networked machines, while its novel-type systems enable flexible and modular program constructions. Go compiles quickly to machine code and has the convenience of garbage collection and the power of run-time reflection. In this guide, we are going to learn how to install golang 1.19beta on Ubuntu 22.04. Go 1.19beta1 is not yet released. There is so much work in progress with all the documentation.

  • molecule test: failed to connect to bus in systemd container - openQA bites

    Ansible Molecule is a project to help you test your ansible roles. I’m using molecule for automatically testing the ansible roles of geekoops.

  • How To Install MongoDB on AlmaLinux 9 - idroot

    In this tutorial, we will show you how to install MongoDB on AlmaLinux 9. For those of you who didn’t know, MongoDB is a high-performance, highly scalable document-oriented NoSQL database. Unlike in SQL databases where data is stored in rows and columns inside tables, in MongoDB, data is structured in JSON-like format inside records which are referred to as documents. The open-source attribute of MongoDB as a database software makes it an ideal candidate for almost any database-related project. This article assumes you have at least basic knowledge of Linux, know how to use the shell, and most importantly, you host your site on your own VPS. The installation is quite simple and assumes you are running in the root account, if not you may need to add ‘sudo‘ to the commands to get root privileges. I will show you the step-by-step installation of the MongoDB NoSQL database on AlmaLinux 9. You can follow the same instructions for CentOS and Rocky Linux.

  • An introduction (and how-to) to Plugin Loader for the Steam Deck. - Invidious
  • Self-host a Ghost Blog With Traefik

    Ghost is a very popular open-source content management system. Started as an alternative to WordPress and it went on to become an alternative to Substack by focusing on membership and newsletter. The creators of Ghost offer managed Pro hosting but it may not fit everyone's budget. Alternatively, you can self-host it on your own cloud servers. On Linux handbook, we already have a guide on deploying Ghost with Docker in a reverse proxy setup. Instead of Ngnix reverse proxy, you can also use another software called Traefik with Docker. It is a popular open-source cloud-native application proxy, API Gateway, Edge-router, and more. I use Traefik to secure my websites using an SSL certificate obtained from Let's Encrypt. Once deployed, Traefik can automatically manage your certificates and their renewals. In this tutorial, I'll share the necessary steps for deploying a Ghost blog with Docker and Traefik.