Many of you have inquired on the recent incident with Kaseya a tool that we use to manage your IT needs.
Official updates about the event here: https://www.myarchway.com/kaseya-updates/
Archway and you, our clients, were not breached by this. We have run the tool provided by Kaseya on our servers
and have confirmed that we and you were not affected.
I’m exceedingly proud of the Archway team that both provided workarounds to support you and who managed the Kaseya servers. They worked day and night including the July 4th holiday
We will be bringing our Kaseya servers back on-line today. We have installed all recommended fixes and more to keep our systems as secure as possible. Part of that is that agent icon to submit tickets will not be working. And if you had access to view
tickets through a web-portal that has been suspended as well for the time-being.
If you have any questions or concerns feel free to call me, Brad @ 805-469-4510.
We apologize for the inconvenience this incident may have caused you and your agency. Thank you for your understanding.
As previously communicated, spammers are using the news about the Kaseya Incident to send out fake email notifications that appear to be Kaseya updates. These are phishing emails that may contain malicious links and/or attachments.
Spammers may also be making phone calls claiming to be a Kaseya Partner reaching out to help.
Kaseya IS NOT having any partners reach out – DO NOT respond to any phone calls claiming to be a Kaseya Partner.
DO NOT click on any links or download any attachments in emails claiming to be a Kaseya advisory.
Archway Computer is waiting for Kaseya to publish changes. Once we receive update package we’ll evaluate it, release a timeline of when our Kaseya server will be safely back online.
Many of you have inquired on the recent incident with Kaseya a tool that we use to manage your IT needs. If you haven’t heard you can read about it here: https://www.bleepingcomputer.com/news/security/revil-ransomware-hits-200-companies-in-msp-supply-chain-attack/
We understand the importance of data security. When we learned of the incident affecting Kaseya on Friday, we immediately disabled our Kaseya VSA server and began an investigation.
Since this time we’ve run a tool provided by Kaseya which indicated there was no compromise of our server or any clients. Until we are able to confirm that it is safe to use Kaseya, we will continue to use the workaround process to respond to service requests.
If you have any questions or concerns feel free to call me @ 805-469-4510.
Should you need computer support, please call 888-361-9995 ext. 1. We apologize for the inconvenience this incident may cause you and your agency.
Thank you for your understanding.
We were called by a Kaseya Representative on 7/2/2021 @ 3pm Advising us to urgently shutdown the server. We shutdown our Kaseya VSA deployment immediately, and it was offline at 3:10PM EST on 7/2/2021. Our Kaseya deployment remains offline.
2. Has your organization taken any of the recommended actions listed in the remediation steps?
We have taken all remediation steps as advised by Kaseya.
-We immediately shutdown our Kaseya VSA deployment as advised by Kaseya.
-We isolated our Kaseya server deployment from the Internet, and executed Kaseya’s provided “Compromise Detection Tool”. The results of the Detection Tool kit proved that our Kaseya server deployment was not compromised or otherwise exploited in the attack.
3. When will you bring the Kaseya Server back online?
We will only bring the server back online when we can guarantee it is safe to do so. We are closely following Kaseya’s advisories. Kaseya is expected to release details about the security enhancements and updates, and a patch sometime this evening (7/7/2021), although this may be delayed. We will evaluate the new security recommendations and patch process and then thoroughly test new configuration.
4. Kaseya’s Notice page can be found here: (which contains all public notices of the event from Kaseya)