SecurityBrief New Zealand - Technology news for CISOs & cybersecurity decision-makers
Story image
CertNZ warns NZ users of Kaseya VSA to shut it down
Sun, 4th Jul 2021
FYI, this story is more than a year old

CertNZ is warning New Zealand organisations using Kaseya VSA software to manage their IT infrastructure they may be at risk of an attack by a Russian-based ransomware.

The cyber security watchdog says the Florida-based company has reported some of their customers using the remote management and monitoring software have had their devices encrypted by REvil ransomware.

In a statement on its website, CertNZ is urging all Kaseya VSA users to shut it down until further notice.

Kaseya has clients and partners in New Zealand.

American cyber security company Huntress Labs said the hack targeted Kaseya before spreading through about 200 - and rising - corporate networks that use its software.

Kaseya provide IT management software for Managed Service Providers (MSPs) and small to mid-sized businesses (SMBs) - inkling clients and partners in New Zealand.

Kaseya has previously publicised its links to New Zealand-based CodeBlue and other AustralasianIT companies, including BigAir, Datacom, eNerds, Leap Consulting, Surety IT and Ricoh Australia.

CodeBlue said it was confident will be no impact or risk to its more than 300 customers across New Zealand. Its investigation had shown no indication of an issue or any compromise on its network and no suspicious or abnormal activity.