The REvil ransomware gang attacked Kaseya’s systems July 2, affecting about 60 of the company’s managed service providers and 1,500 businesses, according to the report. Shortly after the attack, the REvil ransomware gang disappeared online and shut down its payment sites and infrastructure.
Kaseya on July 22 said it received a universal decryptor for the ransomware attack from a “trusted third party” and now is distributing it to affected customers.
“We can confirm we obtained a decryptor from a trusted third party but can’t share anymore about the source,” the company told BleepingComputer. “We had the tool validated by an additional third party and have begun releasing it to our customers affected.”
Kaseya did not share information about the source of the key, but it confirmed that it is the universal decryption key for the entire attack, which lets all managed service providers and their customers decrypt files for free.
At the Becker's 11th Annual IT + Revenue Cycle Conference: The Future of AI & Digital Health, taking place September 14–17 in Chicago, healthcare executives and digital leaders from across the country will come together to explore how AI, interoperability, cybersecurity, and revenue cycle innovation are transforming care delivery, strengthening financial performance, and driving the next era of digital health. Apply for complimentary registration now.
