Cybersecurity experts are struggling with a massive global 4th of July hack that targeted small businesses. At least 200 U.S. companies were affected.
Security analysts believe that the Russian REvil gang was behind the attack; the same and that extorted $11 million on Memorial Day from a meat processing company JBS.
Hackers were able to reach such a large number of companies by targeting firms that specialize in managing IT infrastructure for multiple business clients. The initial target was Kaseya, an IT management software company.
“Kaseya’s VSA product has unfortunately been the victim of a sophisticated cyberattack. Due to our teams’ fast response, we believe that this has been localized to a very small number of on-premises customers only,” the company announced following the attack.
According to Kaseya, most of the companies affected were small businesses, “dental practices, architecture firms, plastic surgery centers, libraries, things like that.”
REvil hackers asked for ransoms of up to $5 million for bigger targets. However, most victims were asked to pay $45,000.
Hackers are said to deliberately choose public holidays for their ransomware attacks because they know that offices are likely to be lightly staffed.
The hack has managed to increase tensions between the U.S. and Russia. On Saturday, President Joe Biden announced that the U.S. will respond if the Russian government had any knowledge of or involvement in the attack.