Former Kaseya staff have alleged that the company failed to address critical security flaws in its software several times between 2017 and 2020.
Earlier this month, threat actors exploited a zero-day vulnerability in Kaseya’s VSA software to breach several managed service providers (MSP) and deliver ransomware to their downstream customers, numbering in the thousands.
Talking to Bloomberg, the five former anonymous employees from Kaseya’s software engineering and development department, say the company has a history of failing to address security issues.
