Threat Brief – Security Alert – Kaseya Update to Post on 07/07/2021

During the U.S. Fourth of July holiday weekend, we all saw a flood of news coverage regarding Kaseya, an IT Services management firm. Kaseya announced they were the victim of a sophisticated cyber-attack using a complex ransomware variant against their VSA platform. This lead to 1,500 of their customers being compromised.

Since this original post about Kaseya, much has happened throughout July. We would like to take a moment to update you on the latest information regarding the original Kaseya announcement and what Nuspire continues to do regarding the incident.

Throughout the month of July, Kaseya has published many updates regarding their response to the incident, patches, and most recently their use of a universal decryptor for affected on-premises VSA servers. Those updates can be found here.

While Nuspire was not directly affected by the ransomware event itself, Kaseya SaaS services were not running between July 3rd and July 12th. This affected our ability to configure changes, deploy software, patch systems or inventory configurations for Nuspire clients. Kaseya SaaS services were brought back online July 12th and have remained online since. For on-premises Kaseya clients, instructions for bringing VSA servers online were published by Kaseya on July 13th.

The Nuspire team continues to monitor each and every announcement from Kaseya and will share any recommendations we have for our clients. We are ready to help when you need us.

Have you registered for our next event?