Cloud Provider

December 2, 2022

Cloud computing provider Rackspace said Tuesday morning a ransomware attack is behind its ongoing Hosted Exchange outage that started early Friday morning.
“As you know, on Friday, December 2nd, 2022, we became aware of suspicious activity and immediately took proactive measures to isolate the Hosted Exchange environment to contain the incident,” the company said in an update to the initial incident report. “We have since determined this suspicious activity was the result of a ransomware incident.”
The investigation, led by a cyber defense firm and Rackspace’s own internal security team, is in its early stages and is still investigating if any data ended up purloined.

July 26, 2022

NetStandard, a managed IT services company in Kansas City, suffered a cyberattack causing the company to shut down its MyAppsAnywhere cloud services.
According to an email sent to MyAppsAnywhere customers shared on Reddit, the company detected signs of a cyberattack on Tuesday morning and quickly shut down cloud services to prevent the attack’s spread. While the company says that only the MyAppsAnywhere services are affected, the attack appears to have had a broader impact, with the company’s main site shut down as well. BleepingComputer has reached out to NetStandard with questions about the attack but has not received a reply at this time.

MyAppsAnywhere cloud services consist of hosted Dynamics GP, Exchange, Sharepoint, and CRM services.

December 11, 2021

The Kronos Private Cloud (KPC), a human resources platform used by multiple organizations and industries, was hit with a ransomware attack over the weekend.
The attack forced parent company UKG to tell its customers it may take several weeks to restore service. UKG, which resulted from the merger of Kronos and Ultimate Software last year, to customers to implement an alternative business continuity protocol in the interim.

April 9, 2021

DigitalOcean suffered a breach involving customers’ billing data.
The cloud infrastructure company sent out an email to customers Wednesday saying it “confirmed an unauthorized exposure of details associated with the billing profile on your DigitalOcean account.”

May 1, 2020

Cloud software provider, Blackbaud, fell victim to a ransomware attack and decided to pay to avoid a release of data information.
The summary of the incident detailed by Charleston, SC-based Blackbaud started in May when the company said it discovered and stopped a ransomware attack. Blackbaud describes itself as a provider of cloud software, services, expertise, and data intelligence that empower and connect people to drive impact for social good.
After discovering the attack, Blackbaud’s security team, along with independent forensics experts and law enforcement, successfully prevented attackers from fully encrypting files.