Kaseya
Company Details
Linkedin ID:
kaseya
Website:
Employees number:
5,350
Number of followers:
181,164
NAICS:
5112
Industry Type:
Homepage:
kaseya.com
IP Addresses:
0
Company ID:
KAS_3067820
Scan Status:
In-progress
Kaseya Company CyberSecurity Posture
kaseya.com
Kaseya is the leading global provider of AI-powered IT management and cybersecurity software. Its Kaseya 365 platform is purpose-built to meet the demands of multifunctional IT professionals, offering a unified solution to manage infrastructure, secure endpoints, back up critical data and streamline operations. Serving nearly 50,000 MSPs and IT departments across more than 170 countries, Kaseya's portfolio includes trusted brands such as Datto, Unitrends, IT Glue, ConnectBooster, Spanning Cloud Apps, RapidFire Tools and more. Headquartered in Miami, Florida, Kaseya is privately held with operations in more than a dozen countries.
Kaseya A.I CyberSecurity Scoring
Kaseya Risk Score (AI oriented)Between 0 and 549
Kaseya
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
Kaseya Global Score (TPRM)XXXX
Kaseya
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
Kaseya Company CyberSecurity News & History
Past Incidents
3
Attack Types
1
Kaseya
Ransomware
Rankiteo Explanation
Attack threatening the organization’s existence
Description: In a high-profile security breach, Kaseya, an IT management software company, became the target of a sophisticated ransomware attack orchestrated by the REvil group. This cybercriminal operation successfully compromised the Kaseya VSA platform, leveraging it to spread the ransomware to managed service providers and their clients globally. With over 2,500 ransomware attacks claiming more than $700 million in ransoms, the impact on businesses ranged from operational disruption to significant financial losses. This large-scale incident highlights the cascading effect a single point of compromise in supply chain cybersecurity can have, underscoring the critical importance of robust cyber defenses for companies operating in the digital domain.
Kaseya
Ransomware
Rankiteo Explanation
Attack threatening the economy of a geographical region
Description: Miami-based IT services firm Kaseya was targeted by the REvil ransomware group. The attack compromised data from its systems and about 1,000 companies were indirectly affected by the attack. The group is demanding about $70 million in bitcoin in exchange for data stolen.
Kaseya
Ransomware
Rankiteo Explanation
Attack threatening the organization’s existence
Description: In July 2021, REvil ransomware launched a supply chain attack on Kaseya, affecting over 1,500 businesses globally. The attack prompted President Biden to call on President Putin to address cybercriminals in Russia, warning that the U.S. will take action if the Russian government refuses to do so. The attack had significant consequences, including high ransom demands and substantial financial losses for the affected businesses.
Kaseya Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for Kaseya
Incidents vs Software Development Industry Average (This Year)
No incidents recorded for Kaseya in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Kaseya in 2025.
Incident Types Kaseya vs Software Development Industry Avg (This Year)
No incidents recorded for Kaseya in 2025.
Incident History — Kaseya (X = Date, Y = Severity)
Kaseya cyber incidents detection timeline including parent company and subsidiaries
Kaseya Company Subsidiaries
Kaseya is the leading global provider of AI-powered IT management and cybersecurity software. Its Kaseya 365 platform is purpose-built to meet the demands of multifunctional IT professionals, offering a unified solution to manage infrastructure, secure endpoints, back up critical data and streamline operations. Serving nearly 50,000 MSPs and IT departments across more than 170 countries, Kaseya's portfolio includes trusted brands such as Datto, Unitrends, IT Glue, ConnectBooster, Spanning Cloud Apps, RapidFire Tools and more. Headquartered in Miami, Florida, Kaseya is privately held with operations in more than a dozen countries.
Loading...
Kaseya Similar Companies
Amazon Fulfillment Technologies & Robotics
On the Fulfillment Technologies & Robotics Team, we build dynamic partnerships between people and intelligent machines. This intricate collaboration helps Amazon fulfill orders with unmatched accuracy. Since we began working with robotics, we've added over a million new jobs worldwide. Working in s
Atlassian powers the collaboration that helps teams accomplish what would otherwise be impossible alone. From space missions and motor racing to bugs in code and IT requests, no task is too large or too small with the right team, the right tools, and the right practices. Over 300,000 global compa
Lazada
About Lazada Group Founded in 2012, Lazada Group is the leading eCommerce platform in Southeast Asia. We are accelerating progress in Indonesia, Malaysia, the Philippines, Singapore, Thailand and Vietnam through commerce and technology. With the largest logistics and payments networks in the regio
Intuit
Intuit is a global technology platform that helps our customers and communities overcome their most important financial challenges. Serving millions of customers worldwide with TurboTax, QuickBooks, Credit Karma and Mailchimp, we believe that everyone should have the opportunity to prosper and we wo
Bosch USA
The Bosch Group’s strategic objective is to create solutions for a connected life. Bosch improves quality of life worldwide with innovative products and services that are "Invented for life" and spark enthusiasm. Podcast: http://bit.ly/beyondbosch Imprint: https://www.bosch.us/corporate-informatio
Databricks is the Data and AI company. More than 10,000 organizations worldwide — including Block, Comcast, Condé Nast, Rivian, Shell and over 60% of the Fortune 500 — rely on the Databricks Data Intelligence Platform to take control of their data and put it to work with AI. Databricks is headquarte
Juniper Networks
Juniper Networks is leading the revolution in networking, making it one of the most exciting technology companies in Silicon Valley today. Since being founded by Pradeep Sindhu, Dennis Ferguson, and Bjorn Liencres nearly 20 years ago, Juniper’s sole mission has been to create innovative products and
Trimble Inc.
Trimble is a global technology company that connects the physical and digital worlds, transforming the ways work gets done. With relentless innovation in precise positioning, modeling and data analytics, Trimble enables essential industries including construction, geospatial and transportation. Whet
Upwork is the world’s work marketplace that connects businesses with independent talent from across the globe. We serve everyone from one-person startups to large, Fortune 100 enterprises with a powerful, trust-driven platform that enables companies and talent to work together in new ways that unloc
.png)
Kaseya CyberSecurity News
December 03, 2025 07:09 AM
The Week in Breach News: December 03, 2025
Salesforce-Gainsight breach impacts over 200 firms, London councils targeted and a major vendor's cyber incident exposes U.S. banks.
November 19, 2025 08:00 AM
Q and A With Rania Succar, CEO of Kaseya
Just two weeks after being named the new CEO of IT management and cybersecurity software provider Kaseya, Rania Succar was on-stage at...
November 11, 2025 08:00 AM
Kaseya: SMBs remain cautious on AI despite persistent human error threat
The cybersecurity vendor's latest research reveals that trust barriers are holding AI adoption back.
November 05, 2025 08:00 AM
The Week in Breach News: November 05, 2025
This week: Ernst & Young data breach, LinkedIn phishing campaign and PureHVNC malware reaches LATAM.
November 05, 2025 08:00 AM
New WatchGuard CEO Joe Smolarski On His Plan To Take A Page From His Kaseya Playbook To ‘Accelerate Growth And Profitability For The MSP Community’
New WatchGuard CEO Joe Smolarski says he is planning to take a page from his playbook as president of Kaseya to change the economics of the...
November 04, 2025 08:00 AM
Auto-enrolling high-risk users: Turning risk into resilience
Phishing continues to be one of the most dreaded cybersecurity risks facing businesses today. According to the 2026 Kaseya Cybersecurity...
November 03, 2025 08:00 AM
One in four organizations unprepared for cyber threats
Kaseya's 2026 Cybersecurity Outlook Report shows that organizations worldwide are poorly prepared for cyberattacks.
October 29, 2025 07:00 AM
Report: Nearly 70% of businesses expect a phishing attack in 2026
Discover key cybersecurity insights from the 2026 Kaseya Cybersecurity Outlook report, uncovering evolving trends, threats and cyber...
October 28, 2025 07:00 PM
Kaseya Chief Product Officer Jim Lippie: ‘AI Will Redefine MSP Efficiency Through Automation’
Kaseya's Jim Lippie on what's next for MSPs and why automation without human intervention is the goal.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Kaseya CyberSecurity History Information
Official Website of Kaseya
The official website of Kaseya is https://www.kaseya.com.
Kaseya’s AI-Generated Cybersecurity Score
According to Rankiteo, Kaseya’s AI-generated cybersecurity score is 397, reflecting their Critical security posture.
How many security badges does Kaseya’ have ?
According to Rankiteo, Kaseya currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Kaseya have SOC 2 Type 1 certification ?
According to Rankiteo, Kaseya is not certified under SOC 2 Type 1.
Does Kaseya have SOC 2 Type 2 certification ?
According to Rankiteo, Kaseya does not hold a SOC 2 Type 2 certification.
Does Kaseya comply with GDPR ?
According to Rankiteo, Kaseya is not listed as GDPR compliant.
Does Kaseya have PCI DSS certification ?
According to Rankiteo, Kaseya does not currently maintain PCI DSS compliance.
Does Kaseya comply with HIPAA ?
According to Rankiteo, Kaseya is not compliant with HIPAA regulations.
Does Kaseya have ISO 27001 certification ?
According to Rankiteo,Kaseya is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Kaseya
Kaseya operates primarily in the Software Development industry.
Number of Employees at Kaseya
Kaseya employs approximately 5,350 people worldwide.
Subsidiaries Owned by Kaseya
Kaseya presently has no subsidiaries across any sectors.
Kaseya’s LinkedIn Followers
Kaseya’s official LinkedIn profile has approximately 181,164 followers.
NAICS Classification of Kaseya
Kaseya is classified under the NAICS code 5112, which corresponds to Software Publishers.
Kaseya’s Presence on Crunchbase
No, Kaseya does not have a profile on Crunchbase.
Kaseya’s Presence on LinkedIn
Yes, Kaseya maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/kaseya.
Cybersecurity Incidents Involving Kaseya
As of December 13, 2025, Rankiteo reports that Kaseya has experienced 3 cybersecurity incidents.
Number of Peer and Competitor Companies
Kaseya has an estimated 27,661 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Kaseya ?
Incident Types: The types of cybersecurity incidents that have occurred include Ransomware.
What was the total financial impact of these incidents on Kaseya ?
Total Financial Loss: The total financial loss from these incidents is estimated to be $800 million.
How does Kaseya detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an law enforcement notified with yes..
Incident Details
Can you provide details on each incident ?
Title: Kaseya Ransomware Attack
Description: Miami-based IT services firm Kaseya was targeted by the REvil ransomware group. The attack compromised data from its systems and about 1,000 companies were indirectly affected by the attack. The group is demanding about $70 million in bitcoin in exchange for data stolen.
Type: Ransomware
Threat Actor: REvil ransomware group
Motivation: Financial
Title: Kaseya Ransomware Attack
Description: Kaseya, an IT management software company, became the target of a sophisticated ransomware attack orchestrated by the REvil group. This cybercriminal operation successfully compromised the Kaseya VSA platform, leveraging it to spread the ransomware to managed service providers and their clients globally.
Type: Ransomware Attack
Attack Vector: Supply Chain Compromise
Vulnerability Exploited: Kaseya VSA platform
Threat Actor: REvil group
Motivation: Financial Gain
Title: REvil Ransomware Members Arrested and Released
Description: Four REvil ransomware members arrested in January 2022 were released by Russia on time served after they pleaded guilty to carding and malware distribution charges. The REvil gang was involved in multiple high-profile ransomware attacks, including the Kaseya supply chain attack.
Date Detected: 2019-04-01
Date Publicly Disclosed: 2022-01-01
Date Resolved: 2022-01-01
Type: Ransomware
Attack Vector: CardingMalware Distribution
Threat Actor: REvil Ransomware Gang
Motivation: Financial Gain
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Ransomware.
How does the company identify the attack vectors used in incidents ?
Identification of Attack Vectors: The company identifies the attack vectors used in incidents through Kaseya VSA platform.
Impact of the Incidents
What was the impact of each incident ?
Incident : Ransomware KAS41213322
Incident : Ransomware Attack KAS000102924
Financial Loss: $700 million in ransoms
Systems Affected: Kaseya VSA platform
Operational Impact: Operational disruption
Incident : Ransomware KAS903062325
Financial Loss: Over $100 million
Systems Affected: Over 1,500 businesses globally
What is the average financial loss per incident ?
Average Financial Loss: The average financial loss per incident is $266.67 million.
Which entities were affected by each incident ?
Incident : Ransomware KAS41213322
Entity Name: Kaseya
Entity Type: IT services firm
Industry: IT Services
Location: Miami
Customers Affected: 1000
Incident : Ransomware Attack KAS000102924
Entity Name: Kaseya
Entity Type: Company
Industry: IT Management Software
Incident : Ransomware KAS903062325
Entity Name: Kaseya
Entity Type: Organization
Industry: Technology
Location: Global
Customers Affected: Over 1,500 businesses
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Ransomware KAS903062325
Law Enforcement Notified: Yes
Data Breach Information
What type of data was compromised in each breach ?
Incident : Ransomware KAS41213322
Ransomware Information
Was ransomware involved in any of the incidents ?
Incident : Ransomware KAS41213322
Ransom Demanded: $70 million
Ransomware Strain: REvil
Data Exfiltration: True
Incident : Ransomware KAS903062325
Ransom Demanded: High ransom payments
Ransomware Strain: REvil (Sodin, Sodinokibi)
Lessons Learned and Recommendations
What lessons were learned from each incident ?
Incident : Ransomware Attack KAS000102924
Lessons Learned: Highlights the critical importance of robust cyber defenses for companies operating in the digital domain.
What are the key lessons learned from past incidents ?
Key Lessons Learned: The key lessons learned from past incidents are Highlights the critical importance of robust cyber defenses for companies operating in the digital domain.
References
Where can I find more information about each incident ?
Incident : Ransomware KAS903062325
Source: Russian state-owned news agency TASS
Incident : Ransomware KAS903062325
Source: Kommersant
Where can stakeholders find additional resources on cybersecurity best practices ?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: Russian state-owned news agency TASS, and Source: Kommersant.
Investigation Status
What is the current status of the investigation for each incident ?
Incident : Ransomware KAS903062325
Investigation Status: Resolved
Initial Access Broker
How did the initial access broker gain entry for each incident ?
Incident : Ransomware Attack KAS000102924
Entry Point: Kaseya VSA platform
High Value Targets: Managed service providers and their clients globally
Data Sold on Dark Web: Managed service providers and their clients globally
Additional Questions
General Information
What was the amount of the last ransom demanded ?
Last Ransom Demanded: The amount of the last ransom demanded was $70 million.
Who was the attacking group in the last incident ?
Last Attacking Group: The attacking group in the last incident were an REvil ransomware group, REvil group and REvil Ransomware Gang.
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on 2019-04-01.
What was the most recent incident publicly disclosed ?
Most Recent Incident Publicly Disclosed: The most recent incident publicly disclosed was on 2022-01-01.
What was the most recent incident resolved ?
Most Recent Incident Resolved: The most recent incident resolved was on 2022-01-01.
Impact of the Incidents
Data Breach Information
Ransomware Information
What was the highest ransom demanded in a ransomware incident ?
Highest Ransom Demanded: The highest ransom demanded in a ransomware incident was $70 million.
Lessons Learned and Recommendations
What was the most significant lesson learned from past incidents ?
Most Significant Lesson Learned: The most significant lesson learned from past incidents was Highlights the critical importance of robust cyber defenses for companies operating in the digital domain.
References
What is the most recent source of information about an incident ?
Most Recent Source: The most recent source of information about an incident are Kommersant and Russian state-owned news agency TASS.
Investigation Status
What is the current status of the most recent investigation ?
Current Status of Most Recent Investigation: The current status of the most recent investigation is Resolved.
Initial Access Broker
What was the most recent entry point used by an initial access broker ?
Most Recent Entry Point: The most recent entry point used by an initial access broker was an Kaseya VSA platform.
.png)
Latest Global CVEs (Not Company-Specific)
Description
PCSX2 is a free and open-source PlayStation 2 (PS2) emulator. In versions 2.5.377 and below, an unchecked offset and size used in a memcpy operation inside PCSX2's CDVD SCMD 0x91 and SCMD 0x8F handlers allow a specially crafted disc image or ELF to cause an out-of-bounds read from emulator memory. Because the offset and size is controlled through MG header fields, a specially crafted ELF can read data beyond the bounds of mg_buffer and have it reflected back into emulated memory. This issue is fixed in version 2.5.378.
Risk Information
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Aircompressor is a library with ports of the Snappy, LZO, LZ4, and Zstandard compression algorithms to Java. In versions 3.3 and below, incorrect handling of malformed data in Java-based decompressor implementations for Snappy and LZ4 allow remote attackers to read previous buffer contents via crafted compressed input. With certain crafted compressed inputs, elements from the output buffer can end up in the uncompressed output, potentially leaking sensitive data. This is relevant for applications that reuse the same output buffer to uncompress multiple inputs. This can be the case of a web server that allocates a fix-sized buffer for performance purposes. There is similar vulnerability in GHSA-cmp6-m4wj-q63q. This issue is fixed in version 3.4.
Risk Information
cvss4
Base: 6.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A vulnerability was found in itsourcecode COVID Tracking System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/?page=zone. The manipulation of the argument ID results in sql injection. The attack may be launched remotely. The exploit has been made public and could be used.
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A vulnerability has been found in itsourcecode COVID Tracking System 1.0. Affected is an unknown function of the file /admin/login.php of the component Admin Login. The manipulation of the argument Username leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A flaw has been found in campcodes Online Student Enrollment System 1.0. This impacts an unknown function of the file /admin/register.php. Executing manipulation of the argument photo can lead to unrestricted upload. The attack can be launched remotely. The exploit has been published and may be used.
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=kaseya' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
