REvil

Kaseya obtains universal decryptor for REvil ransomware victims

Kaseya received a universal decryptor that allows victims of the July 2nd REvil ransomware attack to recover their files for free.

On July 2nd, the REvil ransomware operation launched a massive attack by exploiting a zero-day vulnerability in the Kaseya VSA remote management application to encrypt approximately sixty managed service providers and an estimated 1,500 businesses.

After the attack, the threat actors demanded $70 million for a universal decryptor, $5 million for MSPs, and $40,000 for each extension encrypted on a victim’s network.

Revil's $70 million ransom demand
Revil’s $70 million ransom demand

Soon after, the REvil ransomware gang mysteriously disappeared, and the threat actors

Read More

REvil ransomware hits 1,000+ companies in MSP supply-chain attack

A massive REvil ransomware attack affects multiple managed service providers and over a thousand of their customers through a reported Kaseya supply-chain attack.

Starting this afternoon, the REvil ransomware gang, aka Sodinokibi, targeted MSPs with thousands of customers, through what appears to be a Kaseya VSA supply-chain attack.

At this time, there eight known large MSPs that have been hit as part of this supply-chain attack.

Kaseya VSA is a cloud-based MSP platform that allows providers to perform patch management and client monitoring for their customers.

Huntress Labs’ John Hammond has told BleepingComputer that all of the affected MSPs are

Read More

REvil ransomware hits 200 companies in MSP supply-chain attack

A massive REvil ransomware attack affects multiple managed service providers and their clients through a reported Kaseya supply-chain attack.

Starting this afternoon, the REvil ransomware gang, aka Sodinokibi, targeted MSPs with thousands of customers, through what appears to be a Kaseya VSA supply-chain attack.

At this time, there eight known large MSPs that have been hit as part of this supply-chain attack.

Kaseya VSA is a cloud-based MSP platform that allows providers to perform patch management and client monitoring for their customers.

Huntress Labs’ John Hammond has told BleepingComputer that all of the affected MSPs are using Kaseya VSA and

Read More

REvil Ransomware Group Reportedly Drops Apple Threat

The hacking group known as REvil has reportedly pulled all references to a ransomware attack against Apple supplier Quanta Computer from its home on the dark web, MacRumors reports.

Last week, the group had threatened Quanta with ransomware, demanding $50 million by April 27 in order to stop it from leaking product blueprints. It appears, per BleepingComputer, that after Quanta didn’t budge, it turned to Apple for the money.

“Quanta Computer’s information security team has worked with external IT experts in response to cyber attacks on a small number of Quanta servers,” a Quanta spokesperson told BleepingComputer last

Read More