Kaseya Patches VSA Vulnerabilities Used in REvil Attack

Share post:

The IT management software provider Kaseya has recently closed the seven zero-day vulnerabilities that the Ransomware gang REvil uses to attack MSPs and their customers.

While the Dutch Institute for Vulnerability Disclosure (DIVD) announced the seven vulnerabilities in April, Kaseya implemented patches for most vulnerabilities in the VSA SaaS service.

The operation was only completed when the Ransomware gang REvil ended it and used it to launch a massive attack on 60 MSPs on July 2.

Kaseya urged customers to follow the “On-Premises VSA Startup Readiness Guide” steps before installing the update to prevent further breaches and ensure the devices are not compromised before installation.

For more information, read the original story in Bleeping Computer.

SUBSCRIBE NOW

Related articles

Hamilton Estimates $52 Million to Rebuild IT Systems After Ransomware Attack

The city of Hamilton plans to spend $52 million over the next three years to rebuild and secure...

Avery Data Breach: Credit Card Skimmer Affects Over 61,000 Customers

Label maker Avery has disclosed a data breach affecting 61,193 customers, caused by a credit card skimmer that...

Scammed Company Ordered to Pay $190k for Fraudulent Invoice Payment

A hacker gained access to Mobius Group’s email system and sent instructions from a legitimate email address, directing...

Sneaky 2FA: A Sophisticated Attack Defeats Both 2FA and Phishing Protections

A new phishing kit, ominously named "Sneaky 2FA," has emerged, targeting Microsoft 365 users by bypassing two-factor authentication...

Become a member

New, Relevant Tech Stories. Our article selection is done by industry professionals. Our writers summarize them to give you the key takeaways