Ransomware, Content

Kronos Ransomware Cyberattack Details: Log4j Related?

Kronos & Ultimate Software merged to form UKG in 2020.
Kronos & Ultimate Software merged to form UKG in 2020. Hackers attacked UKG's Kronos on December 11, 2021.

HR software company Kronos has suffered a ransomware attack, and a private cloud restore may take "several weeks," parent business UKG said. So far, it's unclear whether the Kronos ransomware attack is related to the Log4j vulnerability that MSSPs and cybersecurity professionals are scrambling to mitigate worldwide.

Key Kronos customers include Puma, Tesla, YMCA, Waste Management and Temple University. though it's unclear which (if any) of those customers have been impacted.

Confirmed victims of the Kronos outage include the Metropolitan Transportation Authority's MTA timekeeping system in New York, according to The New York Post. The MTA is the North America's largest transportation network, serving 15.1 million people in the 5,000-square-mile area fanning out from New York City through Long Island, southeastern New York State, and Connecticut, the organization indicates.

Kronos is working with "leading cyber security experts to assess and resolve the situation." The HR software company did not mention any MSSPs or incident response companies by name.

Kronos Ransomware Cyberattack Timeline

Here is a timeline recapping the Kronos Private Cloud Ransomware:

  • Monday, December 13, 12:45 a.m. ET: Communications sent to impacted Kronos Private Cloud (KPC) customers began at this time. The company conceded that restoring the applications could take "several weeks."UKG will said it will provide another update within 24 hours. Source: Kronos.
  • Saturday, December 11, 2021: Kronos became aware of unusual activity impacting UKG solutions using Kronos Private Cloud. The company took "immediate action to investigate and mitigate the issue" -- which involved a ransomware attack against such applications as UKG Workforce Central, UKG TeleStaff, Healthcare Extensions, and Banking Scheduling Solutions. Source: Kronos.

Related SC Media Analysis: Cybersecurity experts from KnowBe4, nVisium, Netenrich and StrikeReady shared their views on the Kronos cyberattack here.

Who Are UKG, Kronos and Ultimate Software?

Kronos and Ultimate Software merged to form UKG (Ultimate Kronos Group) in April 2020 to focus on  human capital management (HCM) and workforce management software. The combined business had 12,000 employees and roughly $3 billion in annual revenue at the time of the deal.

UKG has offices in Lowell, Massachusetts and Weston, Florida, with dozens of offices around the world.

An In-Depth Guide to Ransomware

Get essential knowledge and practical strategies to protect your organization from ransomware attacks.
Joe Panettieri

Joe Panettieri is co-founder & editorial director of MSSP Alert and ChannelE2E, the two leading news & analysis sites for managed service providers in the cybersecurity market.

You can skip this ad in 5 seconds