Another large Data Center service provider became a victim of ransomware
Ransomware appears to be redirecting attacks to major data centers on a global scale.
Ransomware appears to be redirecting attacks to major data centers on a global scale. CyrusOne, one of the largest data center management service providers in the United States with dozens of data centers, became the latest victim of ransomware after suffering a massive attack on Thursday, Last 5/12. Currently, the remediation is still being actively implemented.
Fortunately for CyrusOne, the attack was detected and prevented early, affecting only a small amount of data infrastructure the company was managing. Specifically, there are 6 customers of CyrusOne affected in the past incident. These six companies are mainly storing data in CyrusOne's New York Data Center system.
The parts affected by the attack are mostly confined to data management and do not include IX (internet exchange) and IP network services (IP Network Services). It is known that CyrusOne is currently responsible for managing 48 large data centers worldwide. According to the announcement of CyrusOne, this company is currently providing database management services, maintenance and protection of IT infrastructure operations for about 1,000 customers (mostly businesses), more than 200 among them are in the top 1,000 of Fortune.
In parallel with the remedial work, an investigation into the case is also underway. CyrusOne has also been actively working with independent security experts to resolve the issue. The seriousness of the company has partly created peace of mind for the affected parties.
It's still unclear which malicious code is behind the whole problem, but according to ZDNet security experts, REvil (also known as Sodinokibi) is probably the ransomware strain involved. join the attack.
Along with MegaCortex, Ryuk and LockerGoga, REvil is currently one of the biggest damage ransomware in 2019 with a series of large-scale attack campaigns worldwide, causing tens of millions of dollars in damage. This type of ransomware tends to be used by professional cybercrime organizations, primarily targeting businesses.
You should read it
- Warning: These 3 dangerous ransomware could explode all over the world, 1800 large enterprises were 'shot'.
- PureLocker - a very 'weird' ransomware strain that can encrypt servers
- What is Ransomware Ryuk? How to prevent it?
- Security recommendations from the FBI in response to LockerGoga and MegaCortex malware
- Ransomware can encrypt cloud data
- 7 kinds of ransomware you didn't expect
- Why is Ransomware the perfect hack?
- Strange ransomware detection only attacks the rich
- Ryuk Ransomware has added 'selective' encryption capabilities.
- Ako ransomware is raging all over the world, what do you know about this ransomware?
- List of the 3 most dangerous and scary Ransomware viruses
- 5 gangs that create the world's most dangerous ransomware
Maybe you are interested
What is PetitPotam Attack? How to overcome PetitPotam attack The Microsoft MSERT tool can find web shells related to the Exchange Server attack campaign Many encrypted SSDs can be decoded without a password Wsreset tool of Windows 10 Store was used by hackers to bypass anti-virus software The CredSSP vulnerability in the RDP protocol affects all versions of Windows Detects two serious vulnerabilities on uTorrent that can help hackers execute malicious code or view download history on your computer