Kaseya, a software company that serves more than 40,000 organizations around the world, said on Friday it was investigating the possibility that it may have been the victim of a cyber attack.
The company urged customers using its systems management platform, called the VSA, to immediately shut down their servers to avoid the possibility of being compromised by attackers.
“We are experiencing a potential attack against the VSA that has been limited to a small number of local customers only,” the company posted on its website, referring to organizations that maintain their software on their own sites rather than host it with a vendor. cloud. “We are in the process of investigating the root cause of the incident with the utmost vigilance.”
Kaseya did not respond to a request for comment.
John Hammond, a researcher at cybersecurity firm Huntress Labs, said that at least eight companies providing security or technology tools for hundreds of other small businesses could have been “compromised” by the Kaseya attack. He added that REvil, a Russian cybercriminal group that the FBI said was behind the hacking of the world’s largest meat processor, JBS, in May, was the most culprit.