1. Synnex Hack Not Correlated With Kaseya Attack
Bloomberg reported late Friday that Synnex was one of the companies affected in the Kaseya cyberattack, which exploited a vulnerability in Kaseya’s on-premises VSA tool to compromise nearly 60 MSPs and encrypt the data and demand ransom payments from up to 1,500 of their end-user customers. Synnex told CRN Sunday that the company didn’t have comment on the Bloomberg report.
Then on Tuesday morning, Synnex said in a press release that the attack against the distributor could potentially be connected to the Kaseya attack. “We do not know if this is related to the Kaseya ransomware attack to MSPs and some end customers,” Michael Urban, Synnex’s president of worldwide technology solutions distribution, said in an emailed statement to CRN. “That is part of the review.”
Then on Wednesday morning, a Synnex spokesperson told CRN that while the matter is still under review, the distributor doesn’t currently see a correlation between the attacks on Synnex and Kaseya, with the latter having been carried out by the REvil ransomware gang. Urban told The Register Wednesday morning that the instances pertaining to Synnex customers don’t involve ransomware.