Kaseya Ransomware Attack: Free Questionnaire to Assess Third-Party Risk

On July 2, Kaseya announced that attackers had taken advantage of a vulnerability in the company’s VSA software to level a ransomware attack against the company’s customers. Kaseya VSA is a remote monitoring and management tool for networks and endpoints, and the software is widely used by managed service providers (MSPs).

The Kaseya supply chain attack has potential implications for not only MSPs using the VSA solution, but also for their customers. While the full scale of the attack is still coming to light, Kaseya today released an update stating that approximately 50 of its MSP customers are known to be directly affected. However, the press release goes on to state that about 800 to 1,500 customers of the affected MSPs have been operationally impacted thus far.

Like the SolarWinds Orion breach and other recent third-party cyber security incidents, this is another example of the potential exponential impact of supply chain attacks on downstream customers.

Prevalent Can Help Accelerate Third-Party Incident Response

Prevalent recently introduced the Third-Party Incident Response Service, a solution that helps to rapidly identify and mitigate the impact of supply chain breaches like the Kaseya attack by providing a platform to centrally manage vendors, conduct targeted event-specific assessments, score identified risks, and access remediation guidance. Prevalent offers this solution as a managed service to enable your team to offload the collection of critical response data so they can focus on remediating risks instead.

Complementing the Incident Response Service is Prevalent’s continuous cyber and business breach monitoring that provides regular updates on breach disclosures, adverse news events, and cyber incidents such as malicious dark web activity about your vendors.

Together, these solutions help to automate breach impact discovery and accelerate response.

Next Steps to Address the Kaseya Supply Chain Attack

Use this questionnaire to determine the impact the Kaseya attack could have on your supplier ecosystem. And, learn more by downloading a best practices white paper or contact us for a demo!