FIRM HACKED TO SPREAD RANSOMWARE HAD PREVIOUS SECURITY FLAWS
AppleMagazine|AppleMagazine #507
For 21 years, the software company Kaseya labored in relative obscurity — at least until cybercriminals exploited it in early July for a massive ransomware attack that snarled businesses around the world and escalated U.S.Russia diplomatic tensions.
FIRM HACKED TO SPREAD RANSOMWARE HAD PREVIOUS SECURITY FLAWS

But it turns out that the recent hack wasn’t the first major cybersecurity problem to hit the Miami-based company and its core product, which IT teams use to remotely monitor and administer workplace computer systems and other devices.

“It feels a little like déjà vu,” said Allie Mellen, a security analyst at Forrester Research.

In 2018, for instance, hackers managed to infiltrate Kaseya’s tool in 2018 to run a “cryptojacking” operation, which channels the power of afflicted computers to mine cryptocurrency — often without its victims noticing. It was a less harmful breach than the recent ransomware attack, which was impossible to miss since it crippled affected systems until their owners paid up. But it similarly relied on Kaseya’s Virtual System Administrator product, or VSA, as a vehicle to get access to the companies that rely on it.

A 2019 ransomware attack also rode into computers through another company’s add-on software component to the Kaseya VSA, causing more limited damage than the recent attack. Some experts have tied that earlier assault to some of the same hackers who later formed REvil, the Russian-language syndicate blamed for the latest attack.

And in 2014, Kaseya’s own founders sued the company in a dispute over responsibility for a VSA security flaw that allowed hackers to launch a separate cryptocurrency scheme. The court case does not appear to have been previously reported outside of a brief 2015 mention in a technical blog post. At the time, the founders denied responsibility for the vulnerability, calling the company’s charges against them a “bogus assertion.”

This story is from the AppleMagazine #507 edition of AppleMagazine.

Start your 7-day Magzter GOLD free trial to access thousands of curated premium stories, and 9,000+ magazines and newspapers.

This story is from the AppleMagazine #507 edition of AppleMagazine.

Start your 7-day Magzter GOLD free trial to access thousands of curated premium stories, and 9,000+ magazines and newspapers.

MORE STORIES FROM APPLEMAGAZINEView All
AUSTRALIA SHOULD DELAY SOCIAL MEDIA BAN FOR CHILDREN UNDER 16, BIG TECH SAYS
AppleMagazine

AUSTRALIA SHOULD DELAY SOCIAL MEDIA BAN FOR CHILDREN UNDER 16, BIG TECH SAYS

An advocate for major social media platforms told an Australian Senate committee that laws to ban children younger than 16 from the sites should be delayed until next year at least instead of being rushed through the Parliament.

time-read
2 mins  |
November 29, 2024
APPLE AND GOOGLE FACE UK INVESTIGATION INTO MOBILE BROWSER DOMINANCE
AppleMagazine

APPLE AND GOOGLE FACE UK INVESTIGATION INTO MOBILE BROWSER DOMINANCE

Apple and Google aren’t giving consumers a genuine choice of mobile web browsers, a British watchdog said in a report that recommends they face an investigation under new U.K. digital rules taking effect next year.

time-read
1 min  |
November 29, 2024
THE PSYCHOLOGY OF RETIREMENT INCOME: FROM SAVING TO SPENDING
AppleMagazine

THE PSYCHOLOGY OF RETIREMENT INCOME: FROM SAVING TO SPENDING

The narrative of a miserly, Scrooge-like figure hoarding his wealth for years instead of enjoying his retirement might seem unbelievable—but unfortunately, it isn’t relegated only to fiction. It’s a cold reality for many retirees.

time-read
2 mins  |
November 29, 2024
'BUY NOW, PAY LATER' IS MORE POPULAR THAN EVER. IT CAN COST MORE THAN YOU THINK
AppleMagazine

'BUY NOW, PAY LATER' IS MORE POPULAR THAN EVER. IT CAN COST MORE THAN YOU THINK

More shoppers than ever are on track to use ‘buy now, pay later’ plans this holiday season, as the ability to spread out payments looks attractive at a time when Americans still feel the lingering effect of inflation and already have record-high credit card debt.

time-read
2 mins  |
November 29, 2024
DIRECTV CALLS OFF ACQUISITION OF RIVAL DISH.POSSIBLY ENDING A YEARSLONG PURSUIT
AppleMagazine

DIRECTV CALLS OFF ACQUISITION OF RIVAL DISH.POSSIBLY ENDING A YEARSLONG PURSUIT

DirecTV is calling off its planned acquisition of rival Dish after the offer was rejected by bond holders at that company.

time-read
1 min  |
November 29, 2024
IS 'GLICKED' THE NEW 'BARBENHEIMER'? 'WICKED' AND 'GLADIATOR II' COLLIDE IN THEATERS
AppleMagazine

IS 'GLICKED' THE NEW 'BARBENHEIMER'? 'WICKED' AND 'GLADIATOR II' COLLIDE IN THEATERS

“Barbenheimer” was a phenomenon impossible to manufacture. But, more than a year later, that hasn’t stopped people from trying to make “Glicked” — or even “Babyratu” — happen.

time-read
4 mins  |
November 29, 2024
WHAT YOU NEED TO KNOW ABOUT THE PROPOSED MEASURES DESIGNED TO CURB GOOGLE'S SEARCH MONOPOLY
AppleMagazine

WHAT YOU NEED TO KNOW ABOUT THE PROPOSED MEASURES DESIGNED TO CURB GOOGLE'S SEARCH MONOPOLY

U.S. regulators are proposing aggressive measures to restore competition to the online search market after a federal judge ruled Google maintained an illegal monopoly for the last decade.

time-read
3 mins  |
November 29, 2024
ELECTRIC CAR SALES ARE SLOWING IN THE US AND EUROPE AS BOTH FANS AND SKEPTICS SHARE CONCERNS
AppleMagazine

ELECTRIC CAR SALES ARE SLOWING IN THE US AND EUROPE AS BOTH FANS AND SKEPTICS SHARE CONCERNS

While sales of electric vehicles surge in China, adoption of more environmentally friendly vehicles is stumbling in the United States and Europe as carmakers and governments struggle to meet years-old promises about affordability and charging stations.

time-read
5 mins  |
November 29, 2024
IT'S ALMOST TIME FOR SPOTIFY WRAPPED.WHEN CAN YOU EXPECT YOUR 2024 RECAP?
AppleMagazine

IT'S ALMOST TIME FOR SPOTIFY WRAPPED.WHEN CAN YOU EXPECT YOUR 2024 RECAP?

It’s almost that time of year: Spotify is gearing up to release its annual Wrapped, personalized recaps of users’ listening habits and year in audio.

time-read
2 mins  |
November 29, 2024
RANSOMWARE ATTACK ON SOFTWARE SUPPLIER DISRUPTS OPERATIONS FOR STARBUCKS AND OTHER RETAILERS
AppleMagazine

RANSOMWARE ATTACK ON SOFTWARE SUPPLIER DISRUPTS OPERATIONS FOR STARBUCKS AND OTHER RETAILERS

A ransomware attack that hit a major software provider last week caused disruptions for a handful of companies over recent days, from Starbucks to U.K. grocery giant Morrisons.

time-read
1 min  |
November 29, 2024