Suite3 reaction and information about the Kaseya VSA Zero-Day event

In the news this weekend, you might have read about another large-scale international ransomware attack. If you missed it, here is good article in the Wall Street Journal that summarizes the situation: https://www.wsj.com/articles/ransomware-group-behind-meat-supply-attack-threatens-hundreds-of-new-targets-11625285071

Q: What exactly happened?

A: This attack compromised software from a company called Kaseya, which provides one of the software applications that many service providers like Suite3 leverage to deliver services to clients. The service provider community was notified about the issue Friday afternoon and we have been monitoring the situation closely ever since.

Q: Why didn’t this affect Suite3 or our clients?

A: Simple – Suite3 does NOT leverage Kaseya software for the delivery of our services. However, it can’t be stressed enough that all software has vulnerabilities, so the risk of a similar occurrence with any tool set on the market is possible, as evidenced by the SolarWinds Orion event in the news earlier this year. As a result, Suite 3 relies on multiple layers of protection, such as our managed antivirus services, ThreatHunter managed detection and reponse, and ZeroTrust application white listing solution, as well as key administrative practices and controls, which in combination with the tools in place, provides a robust cybersecurity program.

Q: How does this affect my company?

A: This does not affect the operation of any of our client’s systems in anyway. In addition, all of Suite3’s cyber security systems are in place and fully operational.

The Kaseya zero-day has allowed Suite3 to use this event as the foundation of a table-top exercise where we are reacting to the news and evolution in real time. Our Incident Response team has been responding to news as if it were one of our tools that had been at the center of this attack, and roll played what our reaction would be if this had in fact been a real event. Failing to plan is planning to fail, and for everyone’s sake, we hope that we have the best plan there is, which is one that will never have to be put into use.