Full Impact Of Ransomware Attack Hard To Estimate, CEO Of Software Company Targeted Says.

More details have emerged about a ransomware attack linked to suspected Russian criminals who targeted a U.S. software company with tens of thousands of customers around the world.
Security experts on July 5 continued to assess the extent of damage of the attack, which has been claimed by hackers associated with the REvil gang, a major Russian-speaking ransomware syndicate. The cybercriminals have demanded $70 million in bitcoin in exchange for a decryption tool to free the data of companies targeted, but also indicated they were willing to negotiate. Between 800 and 1,500 businesses around the world have been affected, the head of the company whose software is at the center of the attack said on July 5. Fred Voccola, CEO of Kaseya, said in an interview with Reuters that it was hard to estimate the precise impact because the companies and organizations hit were mainly customers of Kaseya's customers. Cybersecurity experts said they believe the number of victims could be in the thousands in at least 17 countries. That would make the attack the largest ransomware attack ever carried out. The disruption has been especially severe in Sweden, where hundreds of supermarkets belonging to the Coop chain had to close because their cash registers were inoperative. A Swedish pharmacy chain, gas station chain, the state railway, and public broadcaster SVT were also hit. Germany's federal cybersecurity watchdog said an unidentified IT service provider that looks after several thousand customers had been hit. Two big Dutch IT services companies also were among the targets, and in New Zealand, schools and kindergartens were knocked offline. Kaseya provides software tools to IT outsourcing companies that typically handle back-office work for businesses too small to have their own IT departments. One of those tools was breached on July 2, allowing the hackers to encrypt the victims’ data, making it inoperable until a ransom is paid. The hackers who claimed responsibility for the breach and demanded the $70 million ransom to restore all the affected businesses' data have indicated a willingness to negotiate, according to Reuters. The news agency said it communicated with a representative of the group in a chat interface on the hackers' website. The representative declined to be identified by name. Voccola refused to say whether he would negotiate. "I can't comment 'yes,' 'no,' or 'maybe'," he told Reuters when asked whether his company would talk to or pay the hackers. "No comment on anything to do with negotiating with terrorists in any way." Voccola said he had spoken to officials at the White House, the FBI, and the Department of Homeland Security about the breach. He added that he was not aware of any nationally important business being affected. Cybersecurity experts had said earlier that REvil appears to be behind the attack, which they noted was strategically launched at the start of the U.S. Independence Day holiday weekend. The FBI believes that REvil was behind a ransomware attack in May on meat-processing giant JBS. The Brazil-based company ended up paying $11 million in bitcoin to the hackers.

Another high-profile ransomware attacks in May targeted Colonial Pipeline, which temporarily closed the largest U.S. gas pipeline. U.S. law enforcement authorities said they recovered most of the ransom paid to another criminal group, DarkSide, in the pipeline case.
In June, U.S. President Joe Biden pressed Russian President Vladimir Putin during their summit in Geneva about ransomware gangs allegedly operating with impunity in Russia. Biden said he also told Putin that the United States would respond if an investigation determines that the Russian government is behind an attack. Putin spokesman Dmitry Peskov on July 5 said the United States had not asked the Kremlin about the ransomware attack involving Kaseya. He suggested it could be discussed during U.S.-Russian consultations on cybersecurity issues that Putin and Biden agreed to hold. No date has been set for those consultations.

With reporting by AP, Reuters, and TASS

Radio Free Europe

RFE/RL journalists report the news in 22 countries where a free press is banned by the government or not fully established, including Iran, Afghanistan, Pakistan, and Russia.

https://www.rferl.org/

Related news
Russian Media Regulator Blocks Navalny's Website

Russian Media Regulator Blocks Navalny's Website

Russia's media regulator, Roskomnadzor, has blocked the website of jailed opposition politician Aleksei Navalny in a widening crackdown by authorities against media and civil organizations ahead of parliamentary elections in September.

Radio Free Europe

Putin Oversees Crowded Russian Naval Parade Despite Pandemic.

Putin Oversees Crowded Russian Naval Parade Despite Pandemic.

President Vladimir Putin praised Russia's naval capabilities during a large warship parade in the port city of St. Petersburg, which drew throngs of spectators despite high infection rates and record deaths from the coronavirus.

Radio Free Europe

COVID-19: Alcohol liver disease cases shoot up, as more people drink more booze.

COVID-19: Alcohol liver disease cases shoot up, as more people drink more booze.

Sky News' Frazer Maude meets recovering alcoholics, as figures shows liver disease cases have rocketed under the pandemic. An increase in alcohol sales of nearly a quarter in supermarkets, despite restaurants and pubs being closed, is blamed in pa...

German floods: More heavy rain expected as people return home - DW News.

German floods: More heavy rain expected as people return home - DW News.

In western Germany, people are returning to towns and villages wrecked by devastating floods - which left more than 200 people dead across several western European countries. Now, weather forecasters have announced there's more rain to come, causi...

Jesse Watters: Did the FBI setup Gov. Gretchen Whitmer kidnapping plot?

Jesse Watters: Did the FBI setup Gov. Gretchen Whitmer kidnapping plot?

Journalist Glen Greenwald discusses the plot against Michigan governor on 'Watters' World' #FoxNews #JesseWatters Subscribe to Fox News! Watch more Fox News Video: Watch Fox News Channel Live: FOX News Channel (FNC) is a 24-hour all-encompassing n...

BREAKING: Team GB wins first medal of Tokyo Olympic Games.

BREAKING: Team GB wins first medal of Tokyo Olympic Games.

Team GB has won its first Olympic medal of the Tokyo Games after Chelsie Giles got bronze in the judo. Giles, 24, from Coventry, won the repechage against Switzerland's Fabienne Kocher in the -52kg category. She was given a shot at third place aft...

Vietnam on lockdown as COVID cases soar with 0.4% vaccinated - DW News

Vietnam on lockdown as COVID cases soar with 0.4% vaccinated - DW News

In Vietnam, the number of COVID-19 infections is soaring. After successfully containing outbreaks early in the pandemic, cases have skyrocketed since April. On Saturday, the capital Hanoi went into a 15-day lockdown, to try and curb the wave of in...

COVID-19: Premier League matches could be open only to the fully vaccinated.

COVID-19: Premier League matches could be open only to the fully vaccinated.

Large events such as Premier League games could be open only to fully vaccinated people from October under government plans. Talks are under way with the PL to discuss whether supporters who have not received both jabs could be barred from entry. ...