CloudNordic said a ransomware attack destroyed customer data on its servers, including primary and secondary backups.
Both CloudNordic and Azero said that they were working to rebuild customers’ web and email systems from scratch, albeit without their data.
Yea.... Don't bother. But, do expect to hear from my lawyers.....
CloudNordic said that it “had no knowledge that there was an infection.”
CloudNordic and Azero are owned by Denmark-registered Certiqa Holding, which also owns Netquest, a provider of threat intelligence for telcos and governments.
Crazy that an admin had full access to all files on all drives including backups without requiring any kind of elevation, where a ransomware could encrypt it all.
At this point 8 don't even know if paying would be the way to go to at lease rexover the files and rethink their security from the ground-up.
If, I were a customer- I would be leaving for sure.
When- you pay a cloud vendor, you are generally paying to ensure a few things....
That this stuff doesn't happen.
That when this type of stuff does happen, they have a recovery plan / working backups.
And, when this hit the news, and I discovered they are owned by a company with a stake in cyber-security, I'd be jumping to a replacement pretty quickly... and staying far away from this company.
Cloud host CloudNordic says most of its customers have “lost all data with us” following a ransomware attack on its datacenter systems, including its backups.
In a notice on its website translated from Danish, CloudNordic said: “The attackers succeeded in encrypting all servers’ disks, as well as on the primary and secondary backup system, whereby all machines crashed and we lost access to all data.”
The cloud host said that it believes the hackers had access to the company’s administrative systems “from which they could encrypt entire disks.”
It’s not clear how the ransomware attack began, but the company said that the attack happened — or was at least exacerbated — by moving infected systems from one datacenter to another datacenter that was “unfortunately wired to access our internal network that is used to manage all of our servers.” CloudNordic said that it “had no knowledge that there was an infection.”
At the time of writing, no ransomware group has appeared to publicly acknowledge or take credit for the cyberattack.
Both CloudNordic and Azero said that they were working to rebuild customers’ web and email systems from scratch, albeit without their data.
The original article contains 432 words, the summary contains 192 words. Saved 56%. I'm a bot and I'm open source!
None. Use your own encryption keys, and pre-encrypt your data.
If the cloud provider I use for storing my backups got pwned, the attacker would gain access to.... well, nothing, without my private keys. And- if you follow the 3.2.1. rule, you would lose nothing, because you have at least two other copies.