SecurityBrief New Zealand - Technology news for CISOs & cybersecurity decision-makers
Story image

CompTIA responds to ransomware attack by forming Rapid Response Team and releasing resources

Wed, 7th Jul 2021
FYI, this story is more than a year old

CompTIA has responded to the recent large scale ransomeware attack by forming a Rapid Response Team and making CompTIA ISAO resources publicly available.

CompTIA, the non-profit association for the IT industry and workforce, is helping IT companies affected by the recent ransomware attack that impacted organisations worldwide. CompTIA member companies have provided immediate assistance and support to other IT companies and, through them, to customers victimised by the ransomware attack that struck Kaseya.

"Within hours of the attack, more than three dozen members of the CompTIA Information Sharing and Analysis Organisation (ISAO) offered assistance," says CompTIA ISAO senior VP and executive director, MJ Shoer.

"This included driving or flying to impacted companies to provide additional 'boots on the ground,' as well as sharing communications, incident response strategies, technical support, and other resources."

CompTIA says it's building on this immediate effort of peer-to-peer help by forming a Rapid Response Team comprising internal and member resources to help any IT firm fallen victim to a cyberattack, regardless of whether they are a CompTIA member.

The CompTIA ISAO will also provide near real-time updates on the attack in its Cyber Forum, with the information available to the entire industry, not just ISAO members.

"This was a global attack impacting companies around the world, reminding us that we face unprecedented cyberattack threats unlike any others we have collectively faced in the past," says Shoer.

"That's why we must engage in an active discourse that discourages cyber-shaming and encourages public and private organisations to come forward immediately and share as much threat intelligence as possible. To limit the damage of these attacks and to ward off future incursions."

Shoer says many industry professionals felt that this attack, classified as a 'sophisticated supply chain attack' by the Cybersecurity Infrastructure and Security Agency and the FBI, was inevitable, especially for MSPs. A recent CompTIA survey found that 62% of MSPs were very concerned and 30% somewhat worried about being targeted with cyberattacks.

"Kaseya just holds the unfortunate distinction of being the company attacked, even as they were working on closing down the very vulnerability that the attackers used," says Shoer.

"Kaseya is to be commended for their transparency throughout this attack."

Follow us on:
Follow us on LinkedIn Follow us on X
Share on:
Share on LinkedIn Share on X