About 1,500 small to medium-sized companies[1] and 50 MSPs are still struggling to deal with the fallout from the massive ransomware attack[2] launched by REvil last week.
Dozens of small law offices and dental clinics are dealing with ransomware infections while 800 Coop supermarket chain stores[3] in Sweden had to temporarily close after they were unable to open their cash registers.
Kaseya has not said if it is considering paying the ransom but ZDNet reported that the company missed a July 6 deadline[4] they set for relaunching SaaS servers. It planned subsequent configuration changes to improve security, including an on-premise patch.
Also: This major ransomware attack was foiled at the last minute. Here's how[5]
According to a statement from Kaseya, "an issue was discovered that has blocked the release" of the VSA SaaS rollout. "The R&D and operations teams worked through the night and will continue to work until we have unblocked the release," Kaseya said in a statement, adding that it is working "around the clock to resolve this issue and restore service."
Operators with REvil initially demanded $70 million[6] for decryption keys but CNBC reported that private negotiators are saying the group is willing to lower their demands to $50 million[7], despite no changes to the figure on the leak site.
"It's just a business. We absolutely do not care about you and your deals, except getting benefits. If we do not do our work and liabilities -- nobody will not cooperate with us," the ransomware group said in a message on its site.
"Its not in our interests. If you will not cooperate with our service -- for us, its does not matter. But you will lose