Bitglass Security Spotlight: Kaseya Ransomware Attack Aftermaths and More Post-Ransomware Data Breaches
Here are the top security stories from recent weeks: Kaseya Patches Zero-Day Vulnerabilities Used in Supply Chain Ransomware Attack Attackers Use Kaseya Ransomware Attack to Spread Cobalt Strike Backdoor in Fake Security ...
Kaseya Postpones Bringing ITSM Platforms Back Up
Kaseya has decided to postpone bringing its IT service management (ITSM) platform back online after a ransomware attack until Sunday afternoon July 11, 2021, Eastern Standard Time. Previously, the company had committed ...
Kaseya Left Customer Portal Vulnerable to 2015 Flaw in its Own Software
Last week cybercriminals deployed ransomware to 1,500 organizations that provide IT security and technical support to many other companies. The attackers exploited a vulnerability in software from Kaseya, a Miami-based company whose ...
REvil Makes Monkeys out of Kaseya Customers
Over the long weekend, a huge ransomware attack emerged. Kaseya seems to have been the common component ...
Kaseya Details REvil Attack, Incident Response Plan
Kaseya, an IT service management (ITSM) tools provider employed by managed service providers (MSPs) and internal IT teams, announced it will keep the software-as-a-service (SaaS) edition of its platform offline until further ...
ConnectWise Says ScreenConnect Flaw Being Actively Exploited
Hackers are actively exploiting critical security flaws in ConnectWise’s remote desktop access tool just days after the software maker alerted customers of the vulnerabilities. ConnectWise learned of the bugs – tracked as ...
CISA Put Securing Open Source Software on the Roadmap
The government’s top cybersecurity agency is laying out steps it says are necessary to ensure that open source software, which is increasingly ubiquitous in modern IT environments, is secure. The eight-page document ...
Emsisoft to Users: Update Software, Reboot Systems After Certificate Error
Cybersecurity firm Emsisoft is telling users to update their anti-virus and other security software in the wake of an error with its code signing certificate that could cause the products to malfunction ...
CISA Unveils Plan to Slow the Hacker Abuse of RMM Tools
The nation’s top cybersecurity agency is rolling out a plan to address the security of remote monitoring and management (RMM) tools that are used by legitimate companies to improve the performance of ...
Software Supply Chain Attackers Targeting Banks, Checkmarx Says
Two banks earlier this year were the targets of open source supply chain attacks, the first of their kind in the industry ...