Kaseya obtained a decryptor for victims of the REvil ransomware attack

At the beginning of last month, McDonald’s, a world-renowned fast-food brand, issued a statement saying it was attacked by hackers. Hackers stole part of McDonald’s data in the United States, South Korea, and Taiwan, including information about employees and restaurants. Although these data do not seem so sensitive, they have aroused people’s concerns and caused discussions.

But at the beginning of this month, Kaseya, a remote IT service management software developer located in Florida, USA, was hit by a large-scale ransomware attack. The hacker organization REvil used the vulnerability to access Kaseya’s server, and then posted a post on the dark web, demanding a ransom from Kaseya, asking the other party to pay a ransom of $70 million in exchange for repairing the data.

PyLocky ransomware decryption
Recently, Kaseya published a blog post stating that Kaseya has obtained the universal decryption key from a third party and verified the validity of the key through testing. At that time, it will be distributed to affected customers so that they can regain access to relevant data. Kaseya’s partner Emisoft claims that this key can completely unlock the affected system. However, this incident made Kaseya’s CEO Fred Voccola very frustrated, saying that it is terrible.
According to the Financial Times report, the world’s largest oil producer Saudi Aramco confirmed that a large amount of the company’s data had been stolen, and the blackmailers demanded a ransom of 50 million US dollars. According to a statement from Saudi Aramco, the data was leaked indirectly through third-party contractors, but Saudi Aramco did not disclose the name of the supplier or explain how the data was leaked.

According to incomplete statistics, there were more than 1,000 global ransomware attacks in the first half of 2021, and the targets and impact of attacks continued to escalate.