Advertisement
Australia markets closed
  • ALL ORDS

    8,153.70
    +80.10 (+0.99%)
     
  • ASX 200

    7,896.90
    +77.30 (+0.99%)
     
  • AUD/USD

    0.6516
    -0.0003 (-0.04%)
     
  • OIL

    83.11
    -0.06 (-0.07%)
     
  • GOLD

    2,254.80
    +16.40 (+0.73%)
     
  • Bitcoin AUD

    108,572.13
    +1,336.65 (+1.25%)
     
  • CMC Crypto 200

    885.54
    0.00 (0.00%)
     
  • AUD/EUR

    0.6038
    +0.0003 (+0.06%)
     
  • AUD/NZD

    1.0905
    +0.0003 (+0.02%)
     
  • NZX 50

    12,105.29
    +94.63 (+0.79%)
     
  • NASDAQ

    18,254.69
    -26.15 (-0.14%)
     
  • FTSE

    7,952.62
    +20.64 (+0.26%)
     
  • Dow Jones

    39,807.37
    +47.29 (+0.12%)
     
  • DAX

    18,492.49
    +15.40 (+0.08%)
     
  • Hang Seng

    16,541.42
    +148.58 (+0.91%)
     
  • NIKKEI 225

    40,342.58
    +174.51 (+0.43%)
     
Engadget has been testing and reviewing consumer tech since 2004. Our stories may include affiliate links; if you buy something through a link, we may earn a commission. Read more about how we evaluate products.

Hackers conduct one of the largest supply chain cyberattacks to date

A breach at Kaseya has affected over 200 companies.

Tero Vesalainen via Getty Images

Hackers just perpetrated one of the largest known supply chain cyberattacks so far. The Financial Times and Wall Street Journal report that IT management software giant Kaseya has fallen victim to a ransomware attack that compromised its VSA remote maintenance tool. The company initially claimed that "fewer than 40" of its customers were directly affected, but security response firm Huntress said three managed service providers it worked with had also succumbed to the attack and compromising over 200 companies.

The number could be higher. Huntress noted there were eight affected cloud service providers, potentially affecting many more firms. Swedish supermarket chain Coop closed almost 800 stores after one of its contractors became a target.

Kaseya said it had identified the likely source of the security flaw and was developing a patch that would be "tested thoroughly." In the meantime, though, the company urged all customers to shut down their VSA servers and keep them offline until they could install the update. Software-as-a-service customers were "never at-risk," Kaseya added, although the company took down that functionality as a precaution.

ADVERTISEMENT

It's not certain who's behind the attack, although Huntress tied the campaign to the Russia-linked REvil group that attacked beef supplier JBS.

The incident is the latest in a string of high-profile ransomware attacks, including JBS and Colonial Pipeline. It also follows the large-scale SolarWinds breaches attributed to another group, Nobelium. Online security is quickly becoming a major issue in the supply chain, and it's not clear these problems will disappear any time soon.

Kaseya's breach also reflects the dangers of relying heavily on one company's software platform. While the number of directly affected clients is small, the supply chain network appears to have created a ripple effect that damaged numerous companies down the line. The situation might not improve until there's either tighter security among Kaseya-like providers or more competition that reduces the potential damage.