HR Platform Kronos, Victim of Ransomware Attack, Says It Will Take ‘Several Weeks’ To Restore System
Ultimate Kronos Company, a human resources management company used by several big name brands, corporations and municipalities, was the victim of a ransomware attack on Dec.11.
“The ransomware incident is affecting the Kronos Private Cloud — the portion of our business where UKG Workforce Central, UKG TeleStaff, Healthcare Extensions and Banking Scheduling Solutions are deployed,” the company said in a statement posted on its website.
The company said it was working with leading cyber security experts to assess and resolve the situation and has notified the authorities.
“While we are working diligently, our Kronos Private Cloud solutions are currently unavailable. Given that it may take up to several weeks to restore system availability, we strongly recommend that you evaluate and implement alternative business continuity protocols related to the affected UKG solutions,” the company said in the statement.
High profile clients using Kronos systems include Tesla, Puma and the YMCA, USA Today reports.
ZDNet reports that the attack caused a stir online, with some cybersecurity experts reporting multiple messages from companies that could no longer process payroll as of Monday morning due to the outage.
“Other sources said the outage would cause them to miss payroll for this week — a harrowing idea considering how close Christmas is — while many are scrambling to find alternative solutions,” according to ZDnet.
ZDnet adds that Kronos’ work management software is used by dozens of major corporations, local governments, and enterprises, including the City of Cleveland, Tesla, Temple University, Winthrop University Hospital, Clemson University and U.K. supermarket chain Sainsburys.
The City of Cleveland posted a message on its website saying that UKG had informed the city and its other clients that it is working to assess and resolve the situation as quickly as possible.
“In the meantime, the City will continue timely payroll processing and ensure employees receive their pay without interruption,” according to the statement.
“Some of the data accessed may have included some employees’ first and last names, addresses, last four of the SSN, and employee ID. While UKG’s investigation is still ongoing, we wanted to share these initial findings as soon as they were available.”
More From GOBankingRates