Businesses around the world rushed Saturday to contain a ransomware attack that has paralyzed their computer networks, a situation complicated in the U.S. by offices lightly staffed at the start of the Fourth of July holiday weekend.
It’s not yet known how many organizations have been hit by demands that they pay a ransom in order to get their systems working again. But some cybersecurity researchers predict the attack targeting customers of software supplier Kaseya could be one of the broadest ransomware attacks on record.
The cybersecurity firm ESET says there are victims in least 17 countries, including the United Kingdom, South Africa, Canada, Argentina, Mexico, Kenya and Germany.
It follows a scourge of headline-grabbing attacks over recent months that have been a source of diplomatic tension between U.S. President Joe Biden and Russian President Vladimir Putin over whether Russia has become a safe haven for cybercriminal gangs.
Biden said Saturday he didn’t yet know for certain who was responsible, adding he has directed U.S. intelligence agencies to investigate who was behind the attack.
“If it is either with the knowledge of and or a consequence of Russia then I told Putin we will respond,” Biden said. “We’re not certain. The initial thinking was it was not the Russian government.”
Cybersecurity experts say the REvil gang, a major Russian-speaking ransomware syndicate, appears to be behind the attack that targeted Kaseya, using its network-management package as a conduit to spread the ransomware through cloud-service providers.
“The number of victims here is already over a thousand and will likely reach into the tens of thousands,” said cybersecurity expert Dmitri Alperovitch of the Silverado Policy Accelerator think tank. “No other ransomware campaign comes even close in terms of impact.”
In Sweden, most of the grocery chain Coop’s 800 stores were unable to open because their cash registers weren’t working, according to SVT, the country’s public broadcaster. The Swedish State Railways and a major local pharmacy chain were also affected.
Kaseya working on a patch
Kaseya CEO Fred Voccola said in a statement that the company believes it has identified the source of the vulnerability and will “release that patch as quickly as possible, to get our customers back up and running.”
Voccola said fewer than 40 of Kaseya’s customers were known to be affected, but experts said the ransomware could still be affecting hundreds more companies that rely on Kaseya’s clients that provide broader IT services.
John Hammond of the security firm Huntress Labs said he was aware of a number of managed-services providers — companies that host IT infrastructure for multiple customers — being hit by the ransomware, which encrypts networks until the victims pay off attackers.
“It’s reasonable to think this could potentially be impacting thousands of small businesses,” said Hammond, basing his estimate on the service providers reaching out to his company for assistance and comments on Reddit showing how others are responding.
At least some victims appeared to be getting ransoms set at $45,000 US, considered a small demand but one that could quickly add up when sought from thousands of victims, said Brett Callow, a ransomware expert at the cybersecurity firm Emsisoft.
Attack possibly timed for the holiday
“It’s reasonable to think that the timing was planned” by hackers for the holiday, said James Shank, of threat intelligence firm Team Cymru.
REvil, the group most experts have tied to the attack, was the same ransomware provider that the FBI linked to an attack on Brazil-based JBS, a major global meat processor forced to pay a $11 million US ransom, amid the U.S. Memorial Day holiday weekend in May.
The federal Cybersecurity and Infrastructure Security Agency in the U.S. said in a statement that it is closely monitoring the situation and working with the FBI to collect more information about its impact.
CISA urged anyone who might be affected to “follow Kaseya’s guidance to shut down VSA servers immediately.” Kaseya runs what’s called a virtual system administrator, or VSA, that’s used to remotely manage and monitor a customer’s network.
The privately held Kaseya is based in Dublin, with a U.S. headquarters in Miami.
Stock market news live updates: Stock turn lower following last week's rebound – Yahoo Canada
U.S. stocks closed a choppy session lower Monday, weighed down by losses in technology shares, after the major indexes failed to sustain momentum from last week’s rally.
The S&P 500 fell 0.3%, and Dow Jones Industrial Average dipped 60 points, or 0.2% after each benchmark wavered between the red and the green throughout the trading day. The Nasdaq Composite declined 0.9%.
The moves follow a sharp rebound Friday that saw the S&P 500 surge 3% during the session and over 6% for the week, its second-best week this year and its first weekly rise since late May. Still, the benchmark index is on pace for its worst opening six months since 1970.
During the previous session, the Dow rose more than 800 points, or 2.7%, while the Nasdaq increased by more than 3.3%, leading to weekly gains for the indexes of more than 5% and 7%, respectively.
Some Wall Street strategists are hopeful that markets may have found a bottom.
“As bad as [this year] has been for investors, the good news is previous years that were down at least 15% at the midway point to the year saw the final six months higher every single time, with an average return of nearly 24%,” LPL Financial chief market strategist Ryan Detrick said in a note last week.
J.P. Morgan strategist Marko Kolanovic also predicted that U.S. equities may climb as much as 7% this week as investors rebalance portfolios amid the end of the month, second quarter, and first half of the year.
While sentiment on Wall Street appears optimistic, investors are in for a bevy of key economic reports and earnings that may sway markets this week and put hopes of a comeback to the test.
Quarterly results from Nike (NKE) and Micron (MU) will be closely watched for signs of rising inventories and slowing orders like Target and some other retailers have warned about recently, which may renew worries of an economic slowdown among Corporate America.
Traders also face a fairly loaded economic calendar this week, with the latest read on core PCE inflation – the Federal Reserve’s preferred measure of consumer prices, the Conference Board’s consumer sentiment survey, and manufacturing and housing reports due out through Friday.
On the move
Robinhood Markets (HOOD)‘s stock surged 14% to close at $9.12 per share following a report from Bloomberg that cryptocurrency exchange FTX is considering a deal to acquire digital trading platform. Earlier in the day, Robinhood was in the spotlight after Goldman Sachs upgraded the brokerage to Neutral, about two months after the bank downgraded shares to Sell.
Coinbase (COIN) shares plunged nearly 10.8% to $55.96 after analysts at Goldman Sachs on Monday downgraded the cryptocurrency exchange to Sell from Neutral and slashed their price target on the stock to $45 from $70. Goldman also noted that while Coinbase recently announced it would cut 18% of staff, these layoffs will not be enough to bring the company’s costs in line with lowered sales.
AMC Entertainment (AMC) rallied to cap trading up 13.6% despite a turbulent session for the broader markets. The stock rose amid increased mentions across forums such as Reddit’s WallStreetBets and Stocktwits. AMC was also added to the Russell 1000 Index after an annual rebalancing.
Alexandra Semenova is a reporter for Yahoo Finance. Follow her on Twitter @alexandraandnyc
Man uses Apple Airtags to find stolen Range Rover | CTV News – CTV News Toronto
An Ontario man whose car was stolen from his driveway in midtown Toronto twice in three months is revealing how he tracked and located his second vehicle.
“It’s pretty scary, but you can’t live your life in fear,” Lorne, whose surname CTV News Toronto has omitted due to safety concerns, said on Monday.
On April 1, his family moved to the Avenue Road and Lawrence Avenue area.
The following day, employees from an electronics company arrived at his house to install televisions. He placed the keys of his Range Rover Autobiography into a faraday box, which is designed to prevent criminals from copying a key fob and gaining access to a vehicle.
However, within minutes of the employees leaving his house, his car was stolen in broad daylight.
“The thieves were able to disable the tracker in my car, put there by the manufacturer,” Lorne said.
Meanwhile, his wallet, along with his kids phones, which were in the car, were thrown out of the vehicle before it was stolen, which Lorne said he believes was a preventive measure to avoid him from tracking the location of his car.
His Range Rover was never recovered.
Thirty days later, he got a new car of the same model, but this time, he placed three Apple AirTag tracking devices inside – one in the glovebox, another in his spare tire in the trunk and a third under his back seat.
While Lorne said he typically parks in his garage, last Wednesday night, he didn’t.
At 8:30 a.m. the next morning, he said his kids ran into his bedroom screaming, ”Daddy, daddy, your car is gone.”
Right away, he logged into his Find My app and located all three of his AirTags near Manville and Comsock roads in Scarborough, listed as a metal recycling plant.
After dropping his kids at school, he headed to that location and called the police. With no success reaching an officer, he drove to the 41 Division police station.
Toronto police spokesperson David Hopkinson confirmed to CTV News Toronto that a report of this nature was received by police on Thursday.
“I pressed my panic button and you heard it going off,” Lorne said. “The next day I was told they recovered nine cars.”
Due to an ongoing investigation, police could not comment further on the incident.
This time, however, Lorne said police recovered his vehicle and he anticipates it should be back in his possession soon.
While he said his AirTags worked in this case, he anticipates car thefts will only get increasingly sophisticated.
“It’s not foolproof,” he said.
Company buying Trump's social media app faces subpoenas – Yahoo Canada Finance
NEW YORK (AP) — The company planning to buy Donald Trump’s new social media business has disclosed a federal grand jury investigation that it says could impede or even prevent its acquisition of the Truth Social app.
Shares of Digital World Acquisition Corp. dropped almost 10% Monday as the company revealed that it has received subpoenas from a grand jury in New York.
The Justice Department subpoenas follow an ongoing probe by the Securities and Exchange Commission into whether Digital World broke rules by having substantial talks about buying Trump’s company starting early last year before Digital World sold stock to the public for the first time in September, just weeks before its announcement that it would be buying Trump’s company.
Trump’s social media venture launched in February as he seeks a new digital stage to rally his supporters and fight Big Tech limits on speech, a year after he was banned from Twitter, Facebook and YouTube.
The Trump Media & Technology Group — which operates the Truth Social app and was in the process of being acquired by Digital World — said in a statement that it will cooperate with “oversight that supports the SEC’s important mission of protecting retail investors.”
The new probe could make it more difficult for Trump to finance his social media company. The company last year got promises from dozens of investors to pump $1 billion into the company, but it can’t get the cash until the Digital World acquisition is completed.
Stock in Digital World rocketed to more than $100 in October after its deal to buy Trump’s company was announced. The stock closed at $25.16 Monday.
Digital World is a special-purpose acquisition company, or SPAC, part of an investing phenomenon that exploded in popularity over the past two years.
Such “blank-check” companies are empty corporate entities with no operations, only offering investors the promise they will buy a business in the future. As such they are allowed to sell stock to the public quickly without the usual regulatory disclosures and delays, but only if they haven’t already lined up possible acquisition targets.
Digital World said in a regulatory filing Monday that each member of its board of directors has been subpoenaed by the grand jury in the Southern District of New York. Both the grand jury and the SEC are also seeking a number of documents tied to the company and others including a sponsor, ARC Global Investments, and Miami-based venture capital firm Rocket One Capital.
Some of the sought documents involve “due diligence” regarding Trump Media and other potential acquisition targets, as well as communications with Digital World’s underwriter and financial adviser in its initial public offering, according to the SEC disclosure.
Digital World also Monday announced the resignation of one of its board members, Bruce Garelick, a chief strategy officer at Rocket One.
The Associated Press
How to play online casinos with minimal investment
NASA discovers double crater on the moon – CTV News
Stock market news live updates: Stock turn lower following last week's rebound – Yahoo Canada
Silver investment demand jumped 12% in 2019
Europe kicks off vaccination programs | All media content | DW | 27.12.2020 – Deutsche Welle
Global Media Markets, 2015-2020, 2020-2025F, 2030F – TV and Radio Broadcasting, Film and Music, Information Services, Web Content, Search Portals And Social Media, Print Media, & Cable – GlobeNewswire
News15 hours ago
Mamadou Konaté, still facing deportation
News17 hours ago
Living with Albinism in Africa
Science16 hours ago
A Mystery Rocket Left A Crater On The Moon – Forbes
Tech12 hours ago
YouTuber tries to upgrade his old M1 MacBook Pro 13 to the brand-new Apple M2 processor – Notebookcheck.net
Art20 hours ago
Welcome to Drag: The performance art celebrating gender fluidity – Queen's Journal
Investment16 hours ago
What is Causing Bitcoin’s Price to Plunge?
News20 hours ago
How Canada handled COVID-19 compared to other countries – CTV News
Science17 hours ago
A new planet hunter awakens: NIRPS instrument sees first light – News | Institute for Research on Exoplanets