US software vendor Kaseya that was hit by a REvil ransomware attack last week revealed that the said attack affected eight of its customers in Europe.
Ronan Kirby, Kaseya’s president and general manager for Europe, the Middle East, and Africa (EMEA), did not identify what organizations were targeted in the attack, but said they were based in the UK, the Netherlands, Germany, Sweden, Norway, and Italy.
Last week, news emerged that Coop, one of Sweden’s largest supermarket store chains, shut down nearly 800 stores across the country after one of its contractors was hit by a REvil ransomware attack following the Kaseya security incident.
Kaseya said it believes that around 60 of its direct customers were hit in the attack. Because many of them are service providers the number of downstream victims could be between 800 and 1,500.
“The impact has varied widely. Some companies had disaster recovery-as-a-service systems in place… Unfortunately, the impact for others has been much more widespread,” Kirby added.
In an update published Thursday, Kaseya said it has delayed the restoration of its SaaS services until Sunday, July 11th.
“It is my decision to do this to pull the release from yesterday. We had all the vulnerabilities managed and felt comfortable with the release, but third-party engineers made suggestions to add extra layers of protection to guard against things we could not foresee,” said Kaseya’s CEO Fred Voccola.