More than 1,000 companies around the world have been hit by a ransomware attack

Most of the infected and blocked businesses are located in America. A hacker link with Russia is suspected and President Biden has ordered intelligence agencies to investigate

(Photo: Unsplash)

Over the weekend more than 1,000 companies around the world have been hit gives a ransomware attack which crippled their IT systems, US cybersecurity firm Huntress Labs reported. Experts say the breach could prove to be the biggest ransomware attack ever.

On Friday, July 2, hackers breached the servers of Kaseya, an IT services company based in Miami, Florida. Kaseya provides security software for dozens of large-scale cybersecurity contractors. These in turn sell their security services to thousands of companies around the world.

Because of this, the hackers were able to quickly break into the systems of at least 40 cybersecurity contractors and from there infected hundreds of companies over the weekend. Most of the affected companies were located in the United States, but the “virus” has also circulated internationally. Swiss Coop had to close 800 shops in the weekend according to when he writes the New York Times, after the attack blocked his cash registers.

Affected companies were asked for a ransom of between $ 500,000 and $ 5 million in exchange for a key to unlock their operations. Cyber ​​security experts quickly blamed the Russian-based hacker group REvil for the attack. This is the gang he blocked a few weeks ago Jbs, the largest meat seller in the world, getting a ransom of 11 million dollars.

United States President Joe Biden announced Saturday that he ordered US intelligence agencies to investigate the attack. “We are not sure” on who was behind Friday’s attack, Biden said. “The initial thought was that it was not the Russian government, but we are not sure yet”, said the American president. Biden however added that if it was found that the Russia is the instigator, or was aware of, this attack, the US will respond properly.

John Hammond, Huntress cybersecurity researcher stated that this “It is a colossal and devastating attack on the supply chain“. Attacks like this on global supply chains, where hackers exploit a single piece of software to target hundreds or even thousands of users at once, are fast becoming the preferred technique of cybercriminals.

This weekend’s attack is in fact just the latest in a recent one wave of attacks ransomware. The most important of which led to the closure of the Colonial Pipeline, in May, which cut off fuel supplies across the east coast of the United States. Cybercriminals targeted hospitals and other key public infrastructure during the pandemic. In 2020, ransomware attacks are increased by 715% compared to the year before, according to an estimate by cybersecurity company Bitdefender.

Categories:   Internet