The giant ransomware attack against Kaseya it could be entirely avoidable. Personal elder speaking to Bloomberg they claimed they had warned managers of “critical” security flaws in Kaseya’s products several times between 2017 and 2020, but that the company hadn’t really addressed them. Many employees have quit or have said they have been fired for inaction.
Employees had complained that Kaseya used old code, implemented poor encryption and was unable to fix the software. The company’s virtual system administrator (VSA), the remote maintenance tool that fell prey to ransomware, was presumably full of problems that workers wanted to replace with software.
An employee said he was fired two weeks after managers sent a 40-page briefing on security issues. Others are just left in frustration with an apparent focus on new features and versions instead of solving basic problems. Kaseya also fired some employees in 2018 in favor of job openings in Belarus, which some staff have considered a security risk given local leaders ’partnerships with the Russian government.
Kaseya declined to comment.
The company has shown signs of wanting to fix the problems. It solved some problems after Dutch researchers reported vulnerabilities. However, it didn’t fix everything, and it didn’t take long before analyst companies like Truesec found glaring flaws in Kaseya’s platform. It was not the first time Kaseya had faced security problems. The company’s software has been used to launch ransomware at least twice between 2018 and 2019, and has not significantly rethought its security strategy.
As accurate as the reports are, Kaseya’s situation would not be unique. Staff at SolarWinds, Twitter and others have described security breaches that were not repaired in time. That only aggravates the situation, mind you. It suggests that key parts of the American online infrastructure have been vulnerable to neglect, and that these basic steps are too common.
All products recommended by Engadget are selected by our editorial team, independent of our parent company. Some of our stories include affiliate links. If you buy something through one of these links, you can earn an affiliate commission.