Technical service provider Hoppenbrouwers in Udenhout is one of the many companies that have been hit by the worldwide cyber attack that is currently underway. Thanks to security, the company already noticed the attack on Friday evening.
Friday night it was announced that the hacker group known as REvil was able to distribute ransomware via so-called VSA software from Kaseya. With ransomware, cyber criminals break into company systems and encrypt them. Only after payment of ransom do they give the key to unblock that block.
–
Gigantic reach
The problem is that VSA software is widely used by IT service providers, who use this program to remotely maintain and manage their customers’ systems. By building in a back door in that software, the hackers have a huge reach.
–
REvil claims to have stolen hundreds of terabytes from over a hundred companies. As an additional means of pressure, in addition to ransomware, they threaten to make that data public. It is difficult to estimate whether so much data has actually been stolen.
–
‘Hasn’t heard of a ransom demand’
General director of Hoppenbrouwers Henny de Haas late in the BD know that he has not yet heard of a ransom demand from Hoppenbrouwers Techniek.
–
When the company discovered on Friday evening that criminals were in the systems, the ICT staff of the Udenhout company immediately shut down everything. According to Henny, the ICT specialists were busy until three in the morning to find a campaign plan to make. He calls the impact of the cyber attack great. Although only some of the computers already appear to be infected with the ransomware, all computers will be cleaned this weekend as a precaution. According to the newspaper, there are between 1,500 and 2,000.
–
Back-up
Fortunately, the company in Udenhout still had a backup from Friday afternoon, so it only lost a few hours of data due to the cyber attack.
–
Hoppenbrouwers thinks that the criminals were unable to steal data because the digital break-in lasted a relatively short time.
– .
