Largest workforce management firm Kronos falls victim to ransomware attack


Kronos has phased out its private cloud services and advises customers to use “alternative business continuity protocols” as the company works to mitigate the attack.

Kronos Private Cloud is a human resource management company, also known as Ultimate Kronos Group, which provides timing services to many leading companies around the world. The company is said to be the latest victim of a ransomware attack.

According to the company’s executive vice president Bob Hughes, they noticed unusual activity on Saturday and while mitigating the issue learned that UKG had suffered a ransomware attack.

SEE: Hotel guests stranded in rooms after ransomware attack

“We are working with leading cybersecurity experts to assess and resolve the situation, and have notified authorities. The investigation is continuing as we work to determine the nature and extent of the incident, ”Hughes said in a statement. blog post.

Restoring operations can take weeks

Kronos sent emails to its corporate clients informing them of the ransomware attack. The company said it took its private cloud services offline after the attack and advised customers to use “alternative business continuity protocols” as restore operations can take several weeks.

After the attack, Kronos customers were unable to access payroll processing and personnel management services. Hughes urged in his blog post that customers should switch to alternative services.

“Since restoring system availability can take up to several weeks, we strongly recommend that you evaluate and implement other business continuity protocols related to the affected UKG solutions. “

Problem for UKG customers

UKG says an internal investigation indicates the attack affected Kronos Private Cloud. It is a part of UKG activities which deploys UKG Workforce Central, Healthcare extensions, UKG TeleStaff and Banking Scheduling Solutions.

This means big problems for companies running payroll and management services through UKG, as inactivity of payroll services would leave most customers without pay when the holidays are just around the corner.

Some of the leading customers who rely on relevant UKG departments include Puma, Tesla, City of Cleveland and Sainsbury’s. UKG noted that there was no indication that UKG Ready, UKG Pro, UKG Dimensions or other UKG companies / solutions were affected.

When contacted, the Sainsbury representative said he was in contact with Kronos as the investigation continues.

SEE: Police lose evidence of Ryuk ransomware attack; the suspects are free

“We are in close contact with Kronos as they investigate a system issue. In the meantime, we have contingencies in place to ensure that our colleagues continue to receive their wages.

It is not yet known whether the attackers used the Log4j RCE fault. The identity of the attackers is also not being disclosed at the time of writing.

Did you enjoy reading this article? Like our page on Facebook and follow us on Twitter.


Comments are closed.