Read Time:1 Minute, 41 Second

Rackspace, an American cloud-computing company in Texas, confirmed that the recent ransomware attack accessed their customers’ storage table.

In December, Rackspace Technology announced that hackers had attacked their customers’ Hosted Exchange email environment. On January 6th 2023, they confirmed that this attack had led the threat actors to penetrate 27 customer data.

“Of the nearly 30,000 customers on the Hosted Exchange email environment at the time of the attack, the forensic investigation determined the threat actor accessed a Personal Storage Table of 27 Hosted Exchange customers,” Rackspace stated.

As of now, the said 27 have been informed about the incident. The company also said that no traces are speaking that the hackers have viewed, misused, obtained, or spread emails and other relevant information in the PSTs.

The forensic investigation indicated that the threat actor known as PLAY used a previously unknown security hole to obtain initial access to the Rackspace Hosted Exchange email system.

“This zero-day exploit is associated with CVE-2022-41080. Microsoft disclosed CVE-2022-41080 as a privilege escalation vulnerability and did not include notes for being part of a Remote Code Execution chain that was exploitable,” Rackspace emphasised.

They also ensure customers that an on-demand solution will be implemented within the next two weeks.

“We will continue working to recover all data possible as planned, however, in parallel, we are developing an on-demand solution for those customers who do still wish to download their data,” Rackspace stated.

According to Rackspace, the Hosted Exchange service will no longer be accessible. Even before the ransomware security breach, the Hosted Exchange email environment was planned for migration to Microsoft 365. Per Rackspace, there won’t be a price increase for Hosted Exchange users who decide to transition to Microsoft 365 and choose a plan with the same capabilities that they presently have.

“Every Hosted Exchange customer has the option to migrate and pay exactly what they are paying today or even slightly lower costs and have the same capabilities,” Rackspace said.

About Post Author

Mitchell Eaton

mitchellsamueleaton@gmail.com
Happy
Happy
0 %
Sad
Sad
0 %
Excited
Excited
0 %
Sleepy
Sleepy
0 %
Angry
Angry
0 %
Surprise
Surprise
0 %
Total
0
Shares
Share 0
Tweet 0
Pin it 0
Share 0
0 0
In,
Previous post A Ransomware Attack that Bypassed A Cloud Computing Provider’s ProxyNotShell Mitigations
hackers with laptop and smartphone Next post Cyberattacks Are Expected to Persist in 2023: Business and Governmental Institutions Are The Main Target

More Stories