Kronos Ransomware Cyberattack Details: Log4j Related? - Hexafusion Blog | Hexafusion

Hexafusion Blog

Kronos Ransomware Cyberattack Details: Log4j Related?

Kronos & Ultimate Software merged to form UKG in 2020. Hackers attacked UKG’s Kronos on December 11, 2021.

HR software company Kronos has suffered a ransomware attack, and a private cloud restore may take “several weeks,” parent business UKG said. So far, it’s unclear whether the Kronos ransomware attack is related to the Log4j vulnerability that MSSPs and cybersecurity professionals are scrambling to mitigate worldwide.

Key Kronos customers include Puma, Tesla, YMCA, Waste Management and Temple University. though it’s unclear which (if any) of those customers have been impacted.

Confirmed victims of the Kronos outage include the Metropolitan Transportation Authority’s MTA timekeeping system in New York, according to The New York Post. The MTA is the North America’s largest transportation network, serving 15.1 million people in the 5,000-square-mile area fanning out from New York City through Long Island, southeastern New York State, and Connecticut, the organization indicates.

Kronos is working with “leading cyber security experts to assess and resolve the situation.” The HR software company did not mention any MSSPs or incident response companies by name.

Kronos Ransomware Cyberattack Timeline

Here is a timeline recapping the Kronos Private Cloud Ransomware:

Monday, December 13, 12:45 a.m. ET: Communications sent to impacted Kronos Private Cloud (KPC) customers began at this time. The company conceded that restoring the applications could take “several weeks.”UKG will said it will provide another update within 24 hours. Source: Kronos. Saturday, December 11, 2021: Kronos became aware of unusual activity impacting UKG solutions using Kronos Private Cloud. The company took “immediate action to investigate and mitigate the issue” — which involved a ransomware attack against such applications as UKG Workforce Central, UKG TeleStaff, Healthcare Extensions, and Banking Scheduling Solutions. Source: Kronos.

Related SC Media Analysis: Cybersecurity experts from KnowBe4, nVisium, Netenrich and StrikeReady shared their views on the Kronos cyberattack here.

Who Are UKG, Kronos and Ultimate Software?

Kronos and Ultimate Software merged to form UKG (Ultimate Kronos Group) in April 2020 to focus on  human capital management (HCM) and workforce management software. The combined business had 12,000 employees and roughly $3 billion in annual revenue at the time of the deal.

UKG has offices in Lowell, Massachusetts and Weston, Florida, with dozens of offices around the world.

Original author: Joe Panettieri
Log4j Zero Day Vulnerability: CISA Mitigation, Pat...
Apache Vulnerability: Java Log4j Zero Day Details,...


No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Monday, 24 January 2022

Captcha Image

By accepting you will be accessing a service provided by a third-party external to

Customer Login

News & Updates

Contact us

Learn more about what Hexafusion can do for your business.

250 - 997 Seymour Street
Vancouver, British Columbia V6B 3M1