Swedish Supermarkets Closed Down By US Ransomware Attack

Uploaded on 2021-07-06 in TECHNOLOGY--Hackers, INTELLIGENCE--Europe, FREE TO VIEW, BUSINESS-Services-IT & Telecoms

Eight hundred Co-Operative supermarket (Co-op) stores in Sweden have been forced to close due to an ongoing massive IT supply chain attack in the US which affecting organisations around the world. The supermarket was not targeted by hackers directly, but is one of a growing number of organisations affected by an attack on a large software supplier the company uses.

Co-op Sweden says it closed the stores recently after point-of-sale tills and self-service checkouts stopped working and only shops in some remote areas were unaffected. The Swedish State Railways and a major local pharmacy chain have also been affected. 

Cyber security experts say the REvil gang, a major Russian-speaking ransomware syndicate, appears to be behind the attack that targeted a software supplier Kaseya, using its network-management package as a conduit to spread the ransomware through cloud-service providers. “One of our sub-contractors was hit by a digital attack, and that’s why our check-outs aren’t working anymore,” Co-op Sweden, which accounts for around 20% of the supermarket sector, said in a statement.
“We regret the situation and will do all we can to reopen swiftly.”

Researchers say about 200 businesses have been hit by this "colossal" ransomware attack, which had mainly affected the US.

Cyber security firm Huntress Labs said the hack targeted US IT company Kaseya before spreading through corporate networks that use its software. The firm believes the Russia-linked REvil ransomware gang was responsible. Kaseya said in a statement on its own website that it was investigating a "potential attack". It's understood that Co-op doesn't use Kesaya directly on its systems but that one of their software providers does.

The case highlights the growing concern in the cyber security world about supply chain attacks where hackers are able to claim multiple victims by attacking their supplier.

The UK's National Cyber Security Centre said: "We are aware of a cyber incident involving Kaseya, and we are working to fully understand its impact. "Ransomware is a growing, global cyber threat, and all organisations should take immediate steps to limit risk and follow our advice on how to put in place robust defences to protect their networks."

Kaseya's CEO Fred Voccola said in a statement that the company believes it has identified the source of the vulnerability and will “release that patch as quickly as possible to get our customers back up and running.”The New Zealand government’s Computer Emergency Response Team (NZ-CERT) has identified the attackers were from a hacking group known as REvil.

At a summit in Geneva last month, US President Joe Biden said he told Russian President Vladimir Putin he had a responsibility to rein in such cyber attacks. Mr Biden said he gave Mr Putin a list of 16 critical infrastructure sectors, from energy to water, that should not be subject to hacking. Last year, hackers extorted at least $18 billion using such software, according to cyber security firm Emsisoft.

Dagens Nyheter:     NCSC:      ABC:     BBC:     Straits Times:    BangkokPost:    WCMANews5:     VOA:   

Illinois News Today:     

You Might Also Read:

Why Is Retail Cyber Security So Weak?:

 

 

 

« $70m Ransom Demand To Restore Hacked Data
Cyber Security In Fintech: Top 5 Tips »

ManageEngine
CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

ZenGRC

ZenGRC

ZenGRC (formerly Reciprocity) is a leader in the GRC SaaS landscape, offering robust and intuitive products designed to make compliance straightforward and efficient.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

Resecurity

Resecurity

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 8,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

Zentek Digital Investigations

Zentek Digital Investigations

Zentek has been providing digital forensics services to the public and private sector for computers and mobile devices since 2004.

Latham & Watkins LLP

Latham & Watkins LLP

Latham & Watkins is an international law firm. Practice areas include Data Privacy, Security and Cybercrime.

QMS International

QMS International

QMS is one of the leading ISO certification bodies in the UK and serves clients worldwide.

Mocana

Mocana

Mocana provides a software platform that allows you to develop, test and distribute more secure IoT devices and services.

LogicManager

LogicManager

LogicManager offer a complete set of IT governance, risk and compliance software solutions and advisory services.

Cyfirma

Cyfirma

CYFIRMA offers Cyber threat visibility and intelligence suite and services aimed at keeping your organization’s cybersecurity posture up-to-date.

QuantiCor Security

QuantiCor Security

QuantiCor Security is one of the world’s leading developers and manufacturers of quantum computer resistant security solutions for IT infrastructures and the Internet of Things (IoT).

SK Shieldus

SK Shieldus

SK shieldus are a converged security provider with business capabilities in both cybersecurity and physical security based on Big-Tech.

Locuz

Locuz

At Locuz, we’ve made it our mission to help businesses like yours create an actionable digital strategy.

Corsearch

Corsearch

Combining AI-powered technology and decades of industry expertise, Corsearch is revolutionizing how companies establish and protect their brands.

Silobreaker

Silobreaker

Silobreaker is a SaaS platform that enables threat intelligence teams to produce high-quality and relevant intelligence at a faster pace.

Vorlon

Vorlon

Vorlon's agentless patent-pending solution facilitates risk profiling of apps, and provides AI-driven behavioral analytics with response recommendations.

Lightpath

Lightpath

Lightpath is revolutionizing how organizations connect to their digital destinations by combining our next-generation network with our next-generation customer service.

Camms

Camms

Camms are a team of experienced professionals dedicated to providing innovative GRC software solutions that help organizations manage risk, make informed decisions, and drive positive change.

Bell Canada

Bell Canada

Bell is the leading provider of network and communications services for Canadian businesses and the partner for delivering network, IoT, cloud, voice, collaboration and security solutions.

Wirespeed

Wirespeed

Managed Detection & Response (MDR) has never been faster or easier: Onboard in minutes, Respond in seconds, Secure instantly.