Press "Enter" to skip to content

Kaseya’s July 4 weekend hack: Is it time to dump your RMM?

Kaseya was hit by the REvil gang.

Now IT services companies are asking… what now? What do we do next? To do that, let’s examine the history of these products, listen to the vendor in their own words, look at the current landscape, and examine what we can do.

Sources:

CISA: https://us-cert.cisa.gov/ncas/alerts/TA18-276B/

Kaseya Breach 1: https://www.esentire.com/security-advisories/kaseya-virtual-system-administrator/

ConnectWise & Kaseya: https://www.zdnet.com/article/gandcrab-ransomware-gang-infects-customers-of-remote-it-support-firms/

ConnectWise 1: https://www.crn.com/news/security/connectwise-tool-used-as-entry-point-in-texas-ransomware-attack/

ConnectWise 2: https://www.crn.com/news/security/connectwise-tool-used-as-entry-point-in-texas-ransomware-attack/

ConnectWise 3: https://www.zdnet.com/article/connectwise-warns-of-ongoing-ransomware-attacks-targeting-its-customers/

Ninja: https://www.crn.com/news/channel-programs/ninjarmm-partner-used-to-seed-ransomware/

ProPublica:
https://www.propublica.org/article/the-new-target-that-enables-ransomware-hackers-to-paralyze-dozens-of-towns-and-businesses-at-once/

Huntress Guide: https://www.youtube.com/watch?v=WRnXzHfpMWs/

Gavin Stone: https://www.gavsto.com/how-secure-is-your-rmm-and-what-can-you-do-to-better-secure-it/

Kaseya Statement: https://www.youtube.com/watch?v=XfAyutRfy2A/

Want to get the show on your podcast app, or get the written versions of the stories? Subscribe to the Business of Tech: https://www.businessof.tech/

Support the show on Patreon: https://patreon.com/mspradio/

Want our stuff? Cool Merch? Wear “Why Do We Care?” – Visit https://shop.spreadshirt.com/mspradio

Follow us on:
Facebook: https://www.facebook.com/mspradionews/
Twitter: https://twitter.com/mspradionews/
Instagram: https://www.instagram.com/mspradio/
LinkedIn: https://www.linkedin.com/company/28908079/

Subscribe and click the notification bell to get all the latest videos.