-
REvil ransomware member extradited to U.S. to stand trial for Kaseya attack
The U.S. Department of Justice announced that alleged REvil ransomware affiliate, Yaroslav Vasinskyi, was extradited to the United States last week to stand trial for the Kaseya cyberattack.
- March 10, 2022
- 01:23 PM
0
-
The Week in Ransomware - November 12th 2021 - Targeting REvil
This week, law enforcement struck a massive blow against the REvil ransomware operation, with multiple arrests announced and the seizure of cryptocurrency.
- November 12, 2021
- 04:07 PM
0
-
New Webinar: Choose Your Own Investigation — Browser Attack Edition
Modern attacks have shifted focus to the browser, yet detection tools remain largely blind to the crucial activity happening there.
Join Push Security on February 11th for an interactive "choose-your-own-adventure" webinar on ClickFix, credential phishing, and other in-browser attacks we've observed in the wild.
-
US seizes $6 million from REvil ransomware, arrest Kaseya hacker
The United States Department of Justice today has announced charges against a REvil ransomware affiliate responsible for the attack against the Kaseya MSP platform on July 2nd and seizing more than $6 million from another REvil partner.
- November 08, 2021
- 01:18 PM
- 0
-
US Congress asks FBI to explain delay in helping Kaseya attack victims
The House Committee on Oversight and Reform has requested a briefing to understand the rationale behind FBI's decision to delay providing the victims of the Kaseya REvil ransomware with an universal decryption key for three weeks.
- September 30, 2021
- 07:48 AM
- 0
-
Kaseya patches Unitrends server zero-days, issues client mitigations
American software company Kaseya has issued a security updates to patch server side Kaseya Unitrends vulnerabilities found by security researchers at the Dutch Institute for Vulnerability Disclosure (DIVD).
- August 26, 2021
- 11:10 AM
- 0
-
Kaseya's universal REvil decryption key leaked on a hacking forum
The universal decryption key for REvil's attack on Kaseya's customers has been leaked on hacking forums allowing researchers their first glimpse of the mysterious key.
- August 11, 2021
- 02:01 AM
- 8
-
Researchers warn of unpatched Kaseya Unitrends backup vulnerabilities
Security researchers warn of new zero-day vulnerabilities in the Kaseya Unitrends service and advise users not to expose the service to the Internet.
- July 26, 2021
- 01:02 PM
- 0
-
The Week in Ransomware - July 23rd 2021 - Kaseya decrypted
This week has quite a bit of news ranging from the USA formally accusing China of the recent ProxyLogon vulnerability and Kaseya mysteriously obtaining the universal decryption key.
- July 23, 2021
- 02:33 PM
- 1
-
Kaseya obtains universal decryptor for REvil ransomware victims
Kaseya received a universal decryptor that allows victims of the July 2nd REvil ransomware attack to recover their files for free.
- July 22, 2021
- 01:46 PM
- 1
-
Kaseya patches VSA vulnerabilities used in REvil ransomware attack
Kaseya has released a security update for the VSA zero-day vulnerabilities used by the REvil ransomware gang to attack MSPs and their customers.
- July 11, 2021
- 04:50 PM
- 0
-
The Week in Ransomware - July 9th 2021 - A flawed attack
This week's news focuses on the aftermath of REvil's ransomware attack on MSPs and customers using zero-day vulnerabilities in Kaseya VSA. The good news is that it has not been as disruptive as we initially feared.
- July 09, 2021
- 03:46 PM
- 0
-
Kaseya warns of phishing campaign pushing fake security updates
Kaseya has warned customers that an ongoing phishing campaign attempts to breach their networks by spamming emails bundling malicious attachments and embedded links posing as legitimate VSA security updates.
- July 09, 2021
- 05:57 AM
- 0
-
REvil victims are refusing to pay after flawed Kaseya ransomware attack
The REvil ransomware gang's attack on MSPs and their customers last week outwardly should have been successful, yet changes in their typical tactics and procedures have led to few ransom payments.
- July 08, 2021
- 04:33 PM
- 1
-
Fake Kaseya VSA security update backdoors networks with Cobalt Strike
Threat actors are trying to capitalize on the ongoing Kaseya ransomware attack crisis by targeting potential victims in a spam campaign pushing Cobalt Strike payloads disguised as Kaseya VSA security updates.
- July 07, 2021
- 08:50 AM
- 0
-
US warns of action against ransomware gangs if Russia refuses
White House Press Secretary Jen Psaki says that the US will take action against cybercriminal groups from Russia if the Russian government refuses to do so.
- July 06, 2021
- 05:09 PM
- 0
-
Kaseya: Roughly 1,500 businesses hit by REvil ransomware attack
Kaseya says the REvil supply-chain ransomware attack breached the systems of roughly 60 of its direct customers using the company's VSA on-premises product.
- July 06, 2021
- 07:59 AM
- 0
-
CISA, FBI share guidance for victims of Kaseya ransomware attack
CISA and the Federal Bureau of Investigation (FBI) have shared guidance for managed service providers (MSPs) and their customers impacted by the REvil supply-chain ransomware attack that hit the systems of Kaseya's cloud-based MSP platform.
- July 05, 2021
- 10:35 AM
- 3
-
REvil ransomware asks $70 million to decrypt all Kaseya attack victims
REvil ransomware has set a price for decrypting all systems locked during the Kaseya supply-chain attack. The gang wants $70 million in Bitcoin for the tool that allows all affected businesses to recover their files.
- July 05, 2021
- 04:59 AM
- 0
-
REvil is increasing ransoms for Kaseya ransomware attack victims
The REvil ransomware gang is increasing the ransom demands for victims encrypted during Friday's Kaseya ransomware attack.
- July 04, 2021
- 01:35 PM
- 1
-
Kaseya was fixing zero-day just as REvil ransomware sprung their attack
The zero-day vulnerability used to breach on-premise Kaseya VSA servers was in the process of being fixed, just as the REvil ransomware gang used it to perform their massive Friday attack.
- July 04, 2021
- 11:31 AM
- 1
0
- 1
- 2
