Up to 1,500 companies affected by ransomware attacks, according to CEOs of U.S. companies

Washington — 800 to 1,500 companies around the world have been affected by ransomware attacks centered on US information technology company Kaseya, its CEO said Monday.

Fred Voccola, CEO of the Florida-based company, said in an interview that the attack on Friday was primarily a customer of Kaseya’s customers, making it difficult to estimate the exact impact.

Kaseya is a company that provides software tools for IT outsourcing shops. Usually a company that handles the back office operations of a company that is too small to have its own technical department or has adequate resources.

One of those tools was destroyed on Friday, allowing hackers to paralyze hundreds of businesses on all five continents. Most of the affected people were small concerns such as dentists and accountants, but there were Sweden, or schools and kindergartens that had to close hundreds of supermarkets because the cashier wasn’t working. In New Zealand, the turmoil felt stronger. I knocked offline.

Hackers blaming the breach demanded $ 70 million to restore data for all affected companies, but intend to ease the demand in personal conversations with cybersecurity experts and Reuters. Is shown.

“We are always ready to negotiate,” a hacker representative told Reuters early Monday. Representatives who spoke through the chat interface of the hacker’s website did not provide their name.

Voccola refused to tell the hacker if he was ready to accept the offer.

“You can’t comment’yes’,’no’,’maybe’,” he said when asked if the company would talk to or pay the hackers. “There is no comment about anything related to negotiations with terrorists.”

As ransomware attacks become more and more destructive and profitable, the topic of ransom payments is becoming more and more talked about.

Mr Voccola told White House, Federal Bureau of Investigation, and Homeland Security officials about the breach, but said he refused to say what they said to him about payments and negotiations.

The White House said on Sunday that it was checking for “national risks” caused by the outbreak of ransomware, but Voccola has so far been attacked by nationally important organizations. He said he was unaware that he was there.

“We are not considering a large critical infrastructure,” he said. “It’s not our business. We’re not running AT & T’s network or Verizon’s 911 system. There’s nothing like that.”

Some information security experts said that hackers communicated with his company because Voccola’s company was in the process of fixing a software vulnerability that was exploited by a hacker when a ransomware attack was carried out. I’m guessing that I was monitoring from the inside.

Mr Voccola said neither he nor the investigators brought in by his company had seen the signs.

“I don’t think they were on our network,” he said. He added that the details of the breach would be “safe” and would be published “if it was safe to do so”.

Some experts believe that on Tuesday, when Americans return from the holiday weekend of July 4, the focus will be on a complete fallout from hacking. The most notable turmoil outside the United States occurs in Sweden, where hundreds of Coop supermarkets had to close doors because cashiers weren’t working, and in New Zealand, where 11 schools and some kindergartens were affected. Did.

In a conversation with Reuters, a hacker representative described the turmoil in New Zealand as an “accident.”

However, they did not express such regrets about the Swedish turmoil.

The supermarket closure was “just a business,” the representative said.

According to the report, organizations are somehow affected by infringement in about 12 countries. Survey released by cyber security company ESET..

Rafael Satter

Posted on