Ransomware, Americas, Content

California MSP Suffers Ryuk Ransomware Attack

Data Resolution, a managed services provider (MSP), help desk provider and Microsoft partner in California, has suffered from a Ryuk ransomware attack, according to Krebs on Security. The attack appears similar to those that hit some U.S. newspapers in recent days.

Data Resolution, also a Microsoft Dynamics ERP (enterprise resource planning) channel partner, has not publicly commented about the attack. However, a note from the MSP to customers assured clientele that their managed ERP databases were safe, according to Krebs on Security.

It's unclear how much data was allegedly impacted. Data Resolutions has somewhere between 11 and 50 employees, and was founded in 1999, according to the company's LinkedIn profile.

MSSP Alert has not independently confirmed the report. We've reached out to Data Resolution for comment.

As of August 2018, Ryuk ransomware had netted attackers over $640,000, according to Check Point Security.

Hackers Increasingly Target MSPs, Department of Justice Warns

This apparently is the latest in a growing list of malware and hacker attacks specifically targeting MSPs and CSPs (cloud services providers). Those hacker targets are particularly attractive, since the MSPs and CSPs typically have aggregated access to numerous end-customer accounts.

The U.S. Department of Justice in December 2018 detailed numerous hacker attacks against MSPs. That report built on an October 2018 DOJ warning, detailing how MSPs must protect their systems from hackers.

MSP-focused software providers have been particularly attune to the warnings. Numerous RMM (remote monitoring and management) software providers have been reevaluating their software development and code quality processes, striving to further safeguard MSP-centric software from hacker attacks, sources say.

Joe Panettieri

Joe Panettieri is co-founder & editorial director of MSSP Alert and ChannelE2E, the two leading news & analysis sites for managed service providers in the cybersecurity market.