So far, no hacking group has asked for a ransom of 60 million euros for a ransomware attack. An attack on the servers of the American company Kaseya can thus be a new procedure.
The so-called ransomware has been experiencing golden times in the last two years. With this type of malware, attackers exploit a vulnerability in software or systems into which they infiltrate malicious code. His task is then to thoroughly encrypt the data so that only the attacker can “unlock” it. The encryption algorithm used is usually so strong that it would take companies decades to decrypt their data, if at all. Therefore, many of them prefer to pay high ransom to guarantee that they will not lose their data and the data of their clients. However, according to security experts, paying a ransom is risky, because it is up to the attackers or the decryption key of their victim to provide. Of course, it’s also about the reputation of the hacker group. If she kept the ransom but did not provide the decryption key to her victim, other victims would no longer be willing to pay her in future attacks.
Due to the attack, the Coop chain had to close hundreds of operations
One of the largest, if not the biggest, cross-hardware attack was the REvil hacker group, which attacked the servers of the American company Kaseya, whose software is used by companies all over the world. For decrypting the data, the attackers demand a record $ 70 million, or almost 60 million euros. Hackers boast that the malware they originally deployed to Kaseya has affected up to one million systems worldwide. However, this number cannot be verified, even though the scope of the attack is already striking. Among those affected are, for example, up to 500 supermarkets from the Swedish Coop Group and 11 schools in New Zealand. According to security company Huntress Labs, hackers have had an impact on the operation of at least 200 companies worldwide.
The hacker attack was also surprising in its sophistication. REvil first attacked Kaseya directly and then the corporate networks that use its software. Although Kaseya claims that the attack affected less than 40 of its own customers, since it also provides its software to third parties, the scope of the attack is many times greater. For example, the Swedish chain Coop could not accept payments and issue receipts, so hundreds of its stores had to be closed overnight.
Kaseya finally lost the battle for time
Interestingly, the company already knew about the vulnerability in Kaseya’s systems long before the hacker attack. She worked intensively to remove it in order to gain an edge over hackers. Eventually, she lost the battle for time, and hackers were able to exploit the hole before Kaseya could pay for it.
Source: Pravda.sk – Veda a technika by vat.pravda.sk.
*The article has been translated based on the content of Pravda.sk – Veda a technika by vat.pravda.sk. If there is any problem regarding the content, copyright, please leave a report below the article. We will try to process as quickly as possible to protect the rights of the author. Thank you very much!
*We just want readers to access information more quickly and easily with other multilingual content, instead of information only available in a certain language.
*We always respect the copyright of the content of the author and always include the original link of the source article.If the author disagrees, just leave the report below the article, the article will be edited or deleted at the request of the author. Thanks very much! Best regards!