GoldenGolden
Advanced Search
Kaseya (company)

Kaseya (company)

Kaseya is a Miami-based cybersecurity company offering automation software and remote management software.

Overview

Kaseya is a Dublin- and Miami-based software company developing software for managing networks, systems, and information technology infrastructure. The company was founded in 2000 by Gerald Blackie, who served as the company's CEO until Insight Venture Partners acquired it in June of 2013. Since its founding in 2000, Kaseya has acquired thirteen other companies, including RocketCyber, RapidFire Tools, Graphus, IT Glue, and more.

July 2021 ransomware attack

On July 2, 2021, Kaseya and various other managed service providers (MSPs) and their customers fell victim to a ransomware attack perpetrated by the group REvil, a ransomware-as-a-service (RaaS) operation. Within hours, the attack source was identified to be a Kaseya software package called VSA, a remote monitoring and management software. Due to an error in the VSA platform, various attackers successfully hit several targets at once.

According to Kaseya CEO Fred Voccola, less than 0.1% of the company's customers were affected by the attack. Still, because the company's clientele includes MSPs, small businesses were included in that percentage. As a result, Voccola urged VSA users to shut down their servers immediately, stating:

"It's critical that you do this immediately because one of the first things the attacker does is shut off administrative access to the VSA."

While the Kaseya Incident Response team was investigating the VSA attack, the company dynamically shut down its SaaS servers and pulled its data centers offline. Kaseya provided an update on July 5, 2021, stating a fix had been developed for the software and that it would be deployed after testing and validation checks were completed.

REvil, a Russian group of hackers, did take responsibility for the attack and demanded $70 million in ransom monies to unlock the computers that had been adversely impacted during the July 2nd initiative. The group claimed it had encrypted more than one million systems during the incident; however, Kaysea's investigation led the company to believe no more than sixty customers and less than 1,500 downstream businesses had been impacted by REvil's efforts.

Timeline

May 3, 2019
Kaseya raises a $500,000,000 venture round from Insight Venture Partners and TPG Growth.

Funding rounds

People

Name
Role
LinkedIn

Adam Webb

Employee

Adriana Dibbin

Employee

Alan Davis

Employee

Alexis Braddy

Employee

Amanda Pita

Employee

Amit Singh

Employee

Ana Cecilia Gutierrez

Employee

Andres Elias

Employee

Andres Gonzalez

Employee

Animesh Kumar

Employee

Ankita Biswas

Employee

Ankush Verma

Employee

Anthony Crawford

Employee

Bapu Bavale

Employee

Baron Schaaf

Employee

Barry Percy

Employee

Ben Lavalley

Employee

Benjamin Roberts

Employee

Brendan Cosgrove

Employee

Bryan Stewart

Employee

Celeste

Employee

Christine Karnatak

Employee

Ciera Westlund

Employee

David Trost

Employee

Dianna Peters

Employee

Page 1 of 4

Further reading

Title
Author
Link
Type
Date

Documentaries, videos and podcasts

Title
Date
Link

Companies

Company
CEO
Location
Products/Services

News

Title
Author
Date
Publisher
Description
Reuters
August 4, 2021
The Hindu
An affiliate of a top Russian-speaking ransomware gang known as REvil used two gaping flaws in software from Florida-based Kaseya to break into about 50 managed services providers that used its products.
Rick Grinnell
July 30, 2021
CIO
Reducing your susceptibility to an attack will make you a less attractive target to financially motivated cyber-criminals.
Brian Fung, Natasha Bertrand and Alex Marquardt, CNN
July 23, 2021
CNN
On Thursday, the software company Kaseya announced that it could help unlock any of its customers' systems that were still inaccessible following a devastating ransomware attack early this month that took down as many as 1,500 businesses worldwide. But for many victims it was too little, too late.
BBC News
July 23, 2021
BBC News
The gang behind the attack had previously asked for $70m to access the stolen files.
Alexander Martin
July 23, 2021
Sky News
The software company says it is working with more than 1,000 businesses who were impacted by the incident to get their systems unlocked.
Alex Scroxton
July 23, 2021
ComputerWeekly.com
Kaseya says it obtained a ransomware decryptor key from a trusted third party, but there is no word on whether a ransom was paid
Dan Goodin
July 22, 2021
Ars Technica
REvil ransomware struck as many as 1,500 networks, but a master key is now available.
Nicole Perlroth
July 22, 2021
www.nytimes.com
Kaseya said the key was "effective at unlocking victims." How the company obtained the key was a mystery.
Brian Fung and Geneva Sands, CNN Business
July 22, 2021
CNN
Kaseya, the software firm whose remote access tool was used to deliver REvil ransomware to hundreds of businesses around the world this month in a devastating supply-chain attack, has obtained a decryptor key allowing it to unlock networks seized by the malware, the company confirmed to CNN Business.
By FRANK BAJAK
July 22, 2021
AP NEWS
BOSTON (AP) -- The Florida company whose software was exploited in the devastating Fourth of July weekend ransomware attack, Kaseya, has received a universal key that will decrypt all of the more than 1,000 businesses and public organizations crippled in the global incident.
July 17, 2021
AP NEWS
BLACKSBURG, Va. (AP) -- Virginia Tech says it was targeted in two recent cyberattacks but feels confident no data was stolen. Virginia Tech spokesman Mark Owczarski told the Roanoke Times Friday a few university units used Kaseya, a U.S.
Alex Scroxton
July 14, 2021
ComputerWeekly.com
The REvil ransomware operation appears to have gone dark, but claims about its demise are almost certainly exaggerated
Aditya Saroha
July 14, 2021
The Hindu
Researchers at Malwarebytes say they found an email that poses as a patch for the Kaseya attack, but contains a malicious link and an attachment, purporting to have come from Microsoft.
MATT O'BRIEN AP Technology Writer
July 13, 2021
ABC News
For 21 years, the software company Kaseya labored in relative obscurity -- at least until cybercriminals exploited it in early July for a massive ransomware attack that snarled businesses around the world and escalated U.S.-Russia diplomatic tensions
By MATT O'BRIEN
July 13, 2021
AP NEWS
For 21 years, the software company Kaseya labored in relative obscurity -- at least until cybercriminals exploited it in early July for a massive ransomware attack that snarled businesses around the world and escalated U.S.-Russia diplomatic tensions.
Richard Speed
July 12, 2021
go.theregister.com
HALO to form the crew habitat module of the Gateway outpost
Caroline Donnelly
July 12, 2021
ComputerWeekly.com
In an open letter signed by 76 MPs, the prime minister and the chancellor are facing calls to intervene urgently on how the loan charge policy is being enforced
Alex Scroxton
July 12, 2021
ComputerWeekly.com
Kaseya has successfully deployed a patch to its ransomware-hit VSA product as per a revised schedule, and customers are beginning to come back online
Simon Sharwood
July 12, 2021
go.theregister.com
Went into space and made it home in time for lunch
John Naughton
July 10, 2021
the Guardian
A combination of cyber attackers' increased sophistication, the availability of cryptocurrencies and the activities of Russian security agencies has created a perfect storm
SHOW MORE

References

Golden logo
Text is available under the Creative Commons Attribution-ShareAlike 4.0; additional terms apply. By using this site, you agree to our Terms & Conditions.