Coop supermarket closes 500 stores after Kaseya ransomware attack

1

Swedish supermarket chain Coop has actually closed down about 500 stores after they were impacted by an REvil ransomware attack targeting handled company via a supply-chain attack.

Last evening, the supermarket chain shut its stores after the REvil ransomware gang targeted handled company (MSPs) as well as their clients in a large supply-chain attack via Kaseya VSA, a remote spot monitoring as well as tracking uite.

Soon after the attack, Coop uploaded a notification mentioning every one of their stores with the exception of 5 had actually been closed down after sales register no more worked because of an “IT attack” on among their vendors.

Right currently, a number of our stores are briefly shut. The complying with stores are NOT impacted as well as are open: The on-line shop on coop.se, stores in Värmland, Oskarshamn, Tabergsdalen, Norrbotten as well as on Gotland.

One of our vendors has actually been struck by an IT attack as well as consequently the sales register do not function. We remorse this as well as do every little thing to be able to open up once more quickly. – Coop.

Translated notification uploaded on Coop’s web site

BBC press reporter Joe Tidy confirmed on Twitter that Coop needed to close down about 500 kept because of the ransomware attack.

Encrypted via MSP supply chain attack

Yesterday, REvil ransomware performed a large attack via the Kaseya VSA spot as well as remote monitoring software application that secured MSPs globally as well as their clients.

Coop is a customer of Swedish MSP Visma that takes care of the supermarket chain’s point-of-sale system utilized to power sales register as well as self-checkout stands.

Visma confirmed they were impacted by the Kaseya cyber attack that enabled the REvil ransomware to secure their client’s systems.

“Kaseya, which supplies software for remote control and operation of clients and servers in the retail trade, has been subjected to a cyber attack that is currently affecting Visma EssCom and many other companies around the world.”

“The attack results in the Kaseya software that Visma EssCom and many other service providers use in their deliveries to retailers can be used to spread a ransomware virus to clients and servers in customers’ IT environments.”

“The most critical consequence is that stores cannot charge their customers when the cash registers are infected. The attack on Kaseya was discovered on Friday night.”

The attack on Coop is simply the initial in what will certainly be a lengthy checklist of sufferers from this attack.

Visma alone mentions they have 1 million clients, a number of whom might have been impacted by the REvil ransomware attack the other day.

In a declaration to BleepingComputer, Kaseya CEO Fred Voccola specified that they recognize of 40 clients impacted by the attack.

While this is a handful, it is vital to keep in mind that each of these MSPs can possibly deal with numerous hundreds of companies, making this one of the most considerable ransomware attack ever before performed.

At this time around, Kaseya states that REvil utilized a susceptability in their on-premise VSA solution to carry out the attack which a spot would certainly be launched quickly.

Comments are closed.

buy levitra buy levitra online