Updated: July 12th, 2021, 12:00pm EDT – Initial Statement

RSA has been made aware of a vulnerability within Kaseya VSA, which is a software product that offers Unified Remote Monitoring and Management enabling endpoint management and network monitoring through one platform. It is available as SaaS or for on-premise deployment and widely used by companies worldwide. On July 3rd, 2021, Kaseya notified its customers of an advanced cyberattack against their VSA software prior to VSA 9.5.7a and advised IMMEDIATE shutdown of the VSA server until further notice.

Kaseya is providing updates within their advisory here.

RSA does not use Kaseya within our corporate or customer environments. Our monitoring services will be updated with the latest indicators of compromise (IOCs) and will continuously monitor for any use of this software in our environments.

This page will be updated with relevant information, recommended actions and FAQs, as RSA receives such detail. Please check back regularly for more information or direct specific concerns to your RSA Account Manager and/or RSA Customer Support representative.

FAQs related to our response

Q:  Does RSA use Kaseya Software?
A:  Based on our investigations, comprehensive vulnerability scanning & software asset review, RSA does not use any version of the Kaseya VSA software.