Biden orders probe of latest ransomware attack
Published On :
By Trevor Hunnicutt
CENTRAL LAKE, Mich. (Reuters) -President Joe Biden said on Saturday he has directed U.S. intelligence agencies to investigate who was behind a sophisticated ransomware attack that hit hundreds of American businesses and led to suspicions of Russian gang involvement.
Security firm Huntress Labs said on Friday it believed the Russia-linked REvil ransomware gang was to blame for the latest ransomware outbreak. Last month, the FBI blamed the same group for paralyzing meat packer JBS SA.
Biden, on a visit to Michigan to promote his vaccination program, was asked about the hack while shopping for pies at a cherry orchard market.
Biden said “we’re not certain” who is behind the attack. The initial thinking was it was not the Russian government but we’re not sure yet,” he said.
Biden said he had directed U.S. intelligence agencies to investigate, and the United States will respond if they determine Russia is to blame.
During a summit in Geneva on June 16, Biden urged Russian President Vladimir Putin to crack down on cyber hackers emanating from Russia, and warned of consequences if such ransomware attacks continued to proliferate.
Biden said he would receive a briefing about the latest attack on Sunday.
If it is either with the knowledge of and/or a consequence of Russia then I told Putin we will respond,” Biden said, referring to what he told Putin in Geneva.
The hackers who struck on Friday hijacked widely used technology management software from a Miami-based supplier called Kaseya. They changed a Kaseya tool called VSA, used by companies that manage technology at smaller businesses. They then encrypted the files of those providers’ customers simultaneously.
Huntress said it was tracking eight managed service providers that had been used to infect some 200 clients.
Kaseya said on its own website on Friday that it was investigating a “potential attack” on VSA, which is used by IT professionals to manage servers, desktops, network devices and printers.
This is a colossal and devastating supply chain attack,” Huntress senior security researcher John Hammond said in an email, referring to an increasingly high profile hacker technique of hijacking one piece of software to compromise hundreds or thousands of users at a time.
In a statement on Friday, the U.S. Cybersecurity and Infrastructure Security Agency said it was “taking action to understand and address the recent supply-chain ransomware attack” against Kaseya’s VSA product.
Supply chain attacks have crept to the top of the cybersecurity agenda after the United States accused hackers of operating at the Russian government’s direction and tampering with a network monitoring tool built by Texas software firm SolarWinds.
On Thursday, U.S. and British authorities said Russian spies accused of interfering in the 2016 U.S. presidential election have spent much of the past two years abusing virtual private networks (VPNs) to target hundreds of organizations worldwide.
On Friday, Russia’s embassy in Washington denied that charge.
(Reporting by Trevor Hunnicutt; additional reporting by Raphael Satter and Joseph Menn; Writing by Steve Holland; Editing by Daniel Wallis, David Gregorio and Diane Craft)
Wanda Rich has been the Editor-in-Chief of Global Banking & Finance Review since 2011, playing a pivotal role in shaping the publication’s content and direction. Under her leadership, the magazine has expanded its global reach and established itself as a trusted source of information and analysis across various financial sectors. She is known for conducting exclusive interviews with industry leaders and oversees the Global Banking & Finance Awards, which recognize innovation and leadership in finance. In addition to Global Banking & Finance Review, Wanda also serves as editor for numerous other platforms, including Asset Digest, Biz Dispatch, Blockchain Tribune, Business Express, Brands Journal, Companies Digest, Economy Standard, Entrepreneur Tribune, Finance Digest, Fintech Herald, Global Islamic Finance Magazine, International Releases, Online World News, Luxury Adviser, Palmbay Herald, Startup Observer, Technology Dispatch, Trading Herald, and Wealth Tribune.
-
-
NEWS3 days ago
Ant International sees robust growth across pillar businesses of payments, digitalisation, and inclusive financial services in 2024
-
-
-
BUSINESS2 days ago
Germany’s CompuGroup in talks about potential offer by CVC
-
-
-
FINANCE2 days ago
Rachel Reeves to push for UK/EU reset at finance ministers’ meeting
-
-
-
INVESTING1 day ago
At Gulf bitcoin gathering, Trump family and allies to bask in crypto industry’s euphoria
-