Home > Cyber News > Three New Zero-Days Disclosed in Kaseya Unitrends
CYBER NEWS

Three New Zero-Days Disclosed in Kaseya Unitrends

by   |  Last Update:  |  0 Comments  

kaseya unitrends zero-days
Three new Kaseya zero-day vulnerabilities were just disclosed in Kaseya Unitrends, including an RCE and an authenticated privilege escalation on the client-side.

According to a recently released public advisory warning, the Kaseya service should be kept off the internet until a patch is made available. “Do not expose this service or the clients directly to the internet until Kaseya has patched these vulnerabilities,” DIVD CSIRT’s recommendation reads.




What is Kaseya Unitrends? It is a cloud-based enterprise backup and disaster recovery technology that comes wither as a disaster recovery-as-a-service, shortly known as DRaS, or as an add-on for the Kaseya Virtual System remote management platform. The vulnerabilities affect versions earlier than 10.5.2.

How were the three Kaseya Unitrends flaws discovered?

“The Dutch Institute for Vulnerability Disclosure (DIVD) performs a daily scan to detect vulnerable Kaseya Unitrends servers and notify the owners directly or via the known abuse channels, Gov-CERTs and CSIRTs, and other trusted channels,” the advisory said.

It is noteworthy that Kaseya recently obtained the universal decryption key for the Revil attack that hit its systems. “On 7/21/2021, Kaseya obtained a decryptor for victims of the REvil ransomware attack, and we’re working to remediate customers impacted by the incident,” the official statement said.

The company says the tool came from a third party. Approximately 1,500 systems were victimized by the attack. Kaseya also said the attack was not supply chain ruling out the possibility of access to its backend infrastructure, but it is rather based on the CVE-2021-30116 zero-days. The zero-days were leveraged in a way that successfully pushed the REvil ransomware on vulnerable systems.

Milena Dimitrova

An inspired writer and content manager who has been with SensorsTechForum since the project started. A professional with 10+ years of experience in creating engaging content. Focused on user privacy and malware development, she strongly believes in a world where cybersecurity plays a central role. If common sense makes no sense, she will be there to take notes. Those notes may later turn into articles! Follow Milena @Milenyim

More Posts

Follow Me:
Twitter

Related posts:
  1. CVE-2021-30116 Zero-Days Used by REvil in Kaseya Ransomware Attack Last week, the REvil ransomware gang carried out an unprecedented...
  2. Kaseya Releases Patches and Mitigations Addresing the Unitrends Flaws In July, Kaseya announced three new zero-day vulnerabilities impacting its...
  3. Kaseya Obtains Universal Decryption Key for REvil Ransomware Kaseya, the company that got hit by a large-scale REvil...
  4. Which Are The Most Secure Smartphones PRICE TOTAL SCORE OS VPN ENCRYPTION TRACK BLOCK FINGERPRINT 1...
  5. CVE-2017-18362 Flaw in Kaseya Plugin Exploited to Deliver GandCrab Hackers have used a two-year-old vulnerability in a software package...
  6. CVE-2021-40539: Critical Zero-Day in Zoho ManageEngine ADSelfService Plus CISA has released an alert regarding a new, critical zero-day...
  7. CVE-2022-44698, CVE-2022-44710: Microsoft Fixes 2 Zero-Days Another Microsoft Patch Tuesday has rolled out, fixing a total...
  8. Four Zero-Days Patched in Microsoft Exchange E-Mail Server (CVE-2021-26855) Microsoft recently addressed four zero-day vulnerabilities in its Exchange email...

Leave a Comment

Your email address will not be published. Required fields are marked *

This website uses cookies to improve user experience. By using our website you consent to all cookies in accordance with our Privacy Policy.
I Agree