UBX Cloud Uncovers Hackers Exploiting MSP Software To Launch Ransomware Attacks

09:06:06 - 25 June 2019

DETROIT (PRWEB)June 24, 2019 - UBX Cloud engineers discovered hackers exploiting a previously undocumented attack path targeting the managed IT industry, while working with one of its MSP partners which reported its end-users’ physical servers being attacked with encryption-based ransomware. The new path of attack leverages applications commonly used by managed IT service providers, remote monitoring and management (RMM) and cybersecurity software from Kaseya and Webroot respectively, to launch ransomware attacks against end-users.

Both Kaseya and Webroot have issued statements that the attacks involved compromised credentials, as opposed to breaches or software vulnerabilities. Webroot has made two-factor authentication a mandatory service and Kaseya is recommending that users activate 2FA as a result.

Roughly 30% of the end-user systems impacted by the attack were quickly recoverable because the victim of the attack utilized UBX Cloud’s Veeam-powered air-gapped offsite backups, which allowed those users to recover their systems in less than 30 minutes. However, recovering the remaining 70% of the impacted systems cost the MSP over $150,000 in bitcoin to gain access to the decryption keys, required to recover the data that was not protected by air-gapped backups.

Contact UBX Cloud for further information on how to protect your critical IT assets from ransomware attacks.

About UBX Cloud
UBX Cloud is a Michigan-based cloud service provider with data centers in the United States, South America and India. Our services include Managed IT-as-a-Service, Private/Hybrid Cloud, Disaster Recovery, Cloud Workspaces, Veeam Cloud Backup and a variety of custom IT consulting services. Our team of IT Engineers helps organizations of all kinds maintain uptime and ensure business continuity. For more information, please visit us at https://www.ubxcloud.com or call 1-888-509-2568.


Leave a Comment