Nearly 200 American companies have been subjected to a “widespread” cyber attack with ransomware, according to a US cybersecurity organization.
Huntress Labs said the attack targeted information technology company Cassia in Florida before it spread among corporate networks that use the company’s software.
In a statement posted on its website, Cassia said it was investigating a “potential attack” on its electronic systems.
Internet security firm Huntress Labs has suggested that the Russia-linked group Revell and the ransomware it is developing may be behind the attack.
The US Agency for Cyber Security and Infrastructure, a federal agency, confirmed in a statement published in this regard that it is taking measures to deal with this attack.
The cyber attack was discovered on Friday afternoon, as companies in the United States prepared for a long weekend extending into next Monday to celebrate Independence Day.
And Cassia suggested that one of its applications running electronic servers, desktop computers, and networking tools in companies, may have been exposed to an electronic breach.
The American company urged its customers who use VSA tools that it develops to shut down their servers immediately.
In the statement published on its website, Cassia said that “a small number” of companies were affected by the attack, but Huntress Labs estimated the number of companies affected by the expanded cyber attack at about 200 companies.
Cassia did not name any of the companies affected by the attacks, and the company’s representative, who was contacted by the BBC, refused to disclose details in this regard.
The company’s website stated that Cassia is present in ten countries and has more than 10,000 customers.
“It’s a massive and devastating attack on the supply chain,” John Hammond, senior cybersecurity researcher at Huntress Labs, said in an email to Reuters.
US President Joe Biden said last month at a summit in Geneva that he had told his Russian counterpart, Vladimir Putin, that he had a responsibility to stop such cyber attacks.
Biden added that he handed President Putin a list of 16 vital infrastructure sectors, ranging from energy to water, that should not be subject to cyberattacks.
The Revell Group – also known as Sudenokibi – is one of the largest and most profitable cybercrime groups in the world. This Friday, the FBI accused her of carrying out a cyber attack in the United States last May, which paralyzed the operations of GPS, the world’s largest meat supplier.
This group sometimes threatens to publish stolen documents on its “Happy Blog” website if the victim does not respond to its demands.
Reports also linked Revell’s name to dozens of organized cyber attacks against local government agencies in the US state of Texas in 2019.