Lesser than 60 of Kaseya’s clients were “directly impacted” by the assault, according to the Miami-based company. On Sunday, the White House said that Florida-based information technology firm that has affected hundreds of organizations across the world are being taken care of and they are reaching out to victims of a large-scale.
However, the entire scope of the attack is only just becoming clear, thanks to the fact that the cyber criminals’ Kaseya software application is utilized by so-called system integrators. Other firms outsource their back-office IT tasks, such as deploying upgrades, to outsourcing shops.
According to one cybersecurity professional, his firm has been targeted by 350 customers.
Anne Neuberger, The White House deputy national security adviser for cyber and emerging technology, said in a statement that the FBI and the Department of Homeland Security’s cyber arm “will reach out to identified victims to provide assistance based upon an assessment of national risk.”
On Saturday, President Joe Biden said he had instructed US intelligence agencies to look into the ransomware assault.
The newest outbreak, according to security company Huntress Labs, was caused by the Russia-linked REvil ransomware group. The FBI accused the same gang for crippling meatpacker JBS SA last month.
Kaseya announced on Sunday that it has engaged cybersecurity firm FireEye Inc to assist with the breach’s aftermath.
Ross McKerchar, the chief information security officer at Sophos Group Plc, said “The two biggest regions we’ve seen are USA and Germany.”
Small-public sector bodies, schools, leisure organizations, and travel, accountants, and credit unions were among the affected.
On Sunday, Germany’s federal cybersecurity authority said that an unnamed IT service provider with thousands of clients had been hacked.
Because Visma Esscom, which runs servers for a lot of Swedish firms and utilizes Kaseya, had to shut hundreds of locations on Saturday, the Swedish Coop grocery store company was forced to close hundreds of stores.