Response: REvil ransomware- Kaseya’s VSA remote management service

On July 2, 2021 an affiliate of the REvil ransomware group launched a widespread crypto-extortion attack, using an exploit of Kaseya’s VSA remote management service.  The REvil actors launched a malicious update package that targeted customers of managed service providers and enterprise users of the on-site version of Kaseya’s VSA remote monitoring and management platform.  At 10am ET on July 3, 2021, Kaseya shared an update that strongly recommends on-premise Kaseya partners keep their VSA servers offline until further notice.

MicroBilt does NOT use Kaseya’s VSA remote monitoring and management platform and thus NOT affected by any of the above vulnerabilities.

We are actively surveying our 3rd party vendors & partners to assess any impact of the above-stated vulnerability.