I’m not sure whether any of our BigFix customers are also using Kaseya, but there is currently a widespread ransomware attack targeting MSPs/Kaseya customers. Early reports are indicating this is very widespread.
Kaseya is recommending customers shut down any on-premise VSA servers immediately.
I’m gauging whether there’s interest in providing IoC content for BigFix to check for compromise. Please direct message me if this would be useful.
https://us-cert.cisa.gov/ncas/current-activity/2021/07/02/kaseya-vsa-supply-chain-ransomware-attack