• F1: Mexico GP 2021 interactive (Interactive)
  • SCIENCE: Archaeological record (EMBARGOED UNTIL WED 16:00BST) (Graphic DUE Oct 20, 15:00GMT)
  • SCIENCE: Dinosaur fossil record (EMBARGOED Thursday 16:00BST) (Graphic DUE Oct 20, 16:00GMT)
  • NORTH KOREA: Test launch of mini-SLBM (Graphic DUE Oct 20, 16:00GMT)
  • SOCCER: English Premier League matchday 9 fixtures, Oct 22-24 (Graphic DUE Oct 20, 17:00GMT)
  • SOCCER: English Premier League matchday 10 fixtures, Oct 30-Nov 1 (Graphic DUE Oct 20, 17:00GMT)
  • For full details of graphics available/in preparation, see Menu -> Planners
 Gigantische ransomware-aanval van REvil infographic
Graphic shows how REvil's supply chain cyberattack works.
GN41562NL

MISDAAD

Russischea hackers eisen $70 miljoen in “Supply Chain”-cyberaanval

By Ninian Carter

July 6, 2021 - Cybersecurity teams are working to stem the impact of the biggest global ransomware attack on record — a “supply chain” attack infecting thousands of users of Kaseya’s VSA software.

Russia's notorious REvil gang, famed for extorting $11 million from meat-processor JBS, has infected thousands of computers in at least 17 countries with malware which encrypts all their data, rendering files inaccessible.

The hackers are demanding a ransom of $70 million in cryptocurrency, in return for giving users access to decryption software that will allegedly return their files to normal.

The hack took place on June 2, with details now emerging of how it was undertaken.

The cyberattack was very sophisticated, sending malicious code disguised as a legitimate software update for Kaseya VSA – software used by big corporations, or service providers for small businesses, to manage servers, software, services and even hardware.

Once installed, the malware was able to spread like a disease and encrypt the contents of hard drives and servers, rendering them useless.

Security software company Sophos says more than 70 managed service providers are impacted. REvil claims on its dark web "Happy Blog" that more than one million systems are infected.

The FBI advises those affected not to pay up. There is no guarantee an encryption key will unlock files, or even if REvil will supply one. Historically, 92% of firms that pay a ransom are unable to recover all their data.

Sources
PUBLISHED: 07/07/2021; STORY: Graphic News
Advertisement