If software has a dangerous and easy-to-exploit security vulnerability, should its maker tell customers to shut it down until it’s fixed? It’s a tough call, but one that Dutch company Hoppenbrouwers says the software vendor Kaseya should have undertaken last year to prevent a massive supply-chain attack executed by the REvil ransomware gang. The gang had uncovered flaws in Kaseya's Virtual Systems Administrator product that Kaseya was racing to patch. Hoppenbrouwers was one of more than 1,500 victims. Its systems were nearly completely encrypted, but it recovered quickly using backups.

Transcript for this episode is here.

Speakers: Marcel de Boer, Financial Director, Hoppenbrouwers; Jeremy Kirk, Executive Editor, Information Security Media Group.

Production Coordinator: Rashmi Ramesh.

The Ransomware Files theme song by Chris Gilbert/©Ordinary Weirdos Records.

Music by Podcastmusic.com.

Follow The Ransomware Files on Twitter: @ransomwarefiles

Follow The Ransomware Files on Instagram: @theransomwarefiles