About 200 US businesses have been hit by a "colossal" ransomware attack, according to a cyber-security firm.
Huntress Labs said the hack targeted Florida-based IT company Kaseya before spreading through corporate networks that use its software.
Kaseya said in a statement on its own website that it was investigating a "potential attack".
Huntress Labs said it believed the Russia-linked REvil ransomware gang was responsible.
The US Cybersecurity and Infrastructure Agency, a federal agency, said in a statement that it was taking action to address the attack.
The cyber-breach emerged on Friday afternoon as companies across the US were clocking off for the long Independence Day weekend.
The two big things that are keeping cyber-security professionals up at night lately are ransomware attacks and supply chain attacks. This latest incident combines both nightmares into one big Independence Holiday weekend-ruining event for hundreds of US IT teams.
Ransomware is the scourge of the internet. Multiple organised criminal gangs are constantly attempting to gain access to computer networks to hold them hostage. The rate of attack is relentless but it can take a lot of time and effort on the criminals part to successfully hijack one victim's computer system.
See also:
(Score: 5, Informative) by turgid on Saturday July 03 2021, @01:27PM (2 children)
Correct, but they will be different bugs, subject to different exploits. Therefore, one single exploit can't take the whole lot down.
I refuse to engage in a battle of wits with an unarmed opponent [wikipedia.org].
(Score: 3, Touché) by Dr Spin on Saturday July 03 2021, @02:01PM (1 child)
But, But ...
Think of the malware vendors!
Warning: Opening your mouth may invalidate your brain!
(Score: 3, Interesting) by Opportunist on Saturday July 03 2021, @09:36PM
Doing this constantly. I call them "my beloved job security", for as long as they continue being a threat, I'm going to be employed as well.
They are my enemies and at the same time I'm their parasite. Because without them, I couldn't exist in the job I have.