TechBizWebTechBizWeb

    Subscribe to Updates

    Get the latest news about Technology and Business from all around the web..

    What's Hot

    Argentinians Seek Shelter in Stablecoins after Economy Minister Resignation

    July 4, 2022

    Turkish inflation nears 80% as Erdoğan’s monetary policy takes toll

    July 4, 2022

    Coinbase Plans Expansion into Europe amid Market Downturn

    July 4, 2022
    Facebook Twitter Instagram
    • About Us
    • Privacy Policy
    • Guest Post
    • Terms
    • Contact
    Facebook Twitter Instagram
    TechBizWebTechBizWeb
    Subscribe
    • Home
    • Technology

      An update broke my favorite game on Xbox, but there is a way to fix Apex Legends input lag

      July 3, 2022

      Now Android users on Twitter can pay to drop the Spaces button too

      July 3, 2022

      British Army’s YouTube and Twitter accounts were hacked to promote crypto scams

      July 3, 2022

      Tesla is facing yet another racial discrimination lawsuit

      July 3, 2022

      Apple Watch Series 8 will reportedly be able to detect if you have a fever

      July 3, 2022
    • Business
    • Cyber Security

      Tips to bolster cybersecurity, incident response this 4th of July weekend

      July 1, 2022

      Jon Raper named CISO at Costco

      July 1, 2022

      2022 RSAC takeaways: Risk management vs compliance

      July 1, 2022

      3 security lessons we haven’t learned from the Kaseya breach

      July 1, 2022

      Auston Davis named CISO at Versant Health

      June 30, 2022
    • Blockchain
    • Vulnerabilities
    • Social Engineering
    • Malware
    • Cyber Security Alerts
    TechBizWebTechBizWeb
    Home»Cyber Security»Hacker Erases Email Provider’s Servers, Backups
    Cyber Security

    Hacker Erases Email Provider’s Servers, Backups

    February 12, 2019Updated:February 12, 2019No Comments4 Mins Read
    Facebook Twitter Pinterest LinkedIn Tumblr WhatsApp
    Share
    Facebook Twitter LinkedIn Pinterest Email


    Email provider VFEmail was hit by a destructive attack, where a hacker who accessed its network was able to erase its servers in the United States, including the backup systems. 

    “We have suffered catastrophic destruction at the hands of a hacker. This person has destroyed all data in the US, both primary and backup systems. We are working to recover what data we can,” the company writes on its website. 

    Established in 2001, the company provides email services and claims to provide increased email security through scanning all incoming messages and attachments for viruses and blocking malicious content via a gateway, before reaching its servers.

    However, this incident shows that user data was not protected with appropriate measures.

    On Monday, the email provider announced that their external facing systems in multiple datacenters were down after a hacker “last seen as [email protected]” started formatting the servers. Based on the IP address, the hacker appears to have been operating out of Bulgaria, but could have been working from anywhere via a VPN.

    The company says it might have lost all user data stored on the affected servers. “I fear all US based data may be lost,” a tweet posted yesterday reads. 

    The company recommends that users do not attempt to reconnect their own email clients, as all local email will be lost. Following the incident, all mailboxes are emptied. 

    “At this time, the attacker has formatted all the disks on every server. Every VM is lost. Every file server is lost, every backup server is lost,” VFEmail said on Twitter. 

    The company’s servers in the Netherlands, which was 100% hosted with a vastly smaller dataset, survived the attack because the backups by the provider remained intact. This allowed the email provider to restore its service there. 

    The hacker was able to destroy all virtual machines despite the fact that not all of them shared the same authentication, the company revealed. 

    “This was more than a multi-password via ssh exploit, and there was no ransom. Just attack and destroy,” VFEmail said. 

    The attack was discovered and stopped at a time the perpetrator was formatting one of the servers, but the company is uncertain whether that specific server is recoverable. At the moment, however, it looks as if most of the company’s infrastructure is lost. 

    As Terence Jackson, Chief Information Security Officer at Thycotic, pointed to SecurityWeek in an emailed comment, this might have been either a brute force attack or the result of credential stuffing. To avoid such disasters, production and backup data should never be stored together and both online and offline backups should be kept, he says. 

    “This type of attack highlights the importance of having, updating and testing your Disaster Recovery/Business Continuity plans often and using a Privileged Access Management solution. The about page on the site shows a network diagram that does include an offsite backup server attached to the public internet. At this point, I believe we have more questions than answers,” Jackson said.

    “This kind of destructive attack, with no stated motive or demands, is quite rare. An organization losing all of their data, and all of their customer data, is a nightmare scenario that could easily put a small company out of business and cause a huge financial impact on a large enterprise. Sony suffered this type of catastrophic destruction in 2014, which was attributed to North Korea,” Chris Morales, head of security analytics at Vectra, told SecurityWeek.

    “The first thought that comes to mind is this is a service being sold as a secure email. The second is that if this is secure email then where are the offline backups and archives? Offline backups might not give a full restore to the exact date data was lost, but it would prevent the complete loss of all historical user data. Offline backup is the same strategy organizations are using to counter loss from ransomware,” Morales continued.

    “The fact that attackers were able to access and erase all the information demonstrates that the systems were not protected in an effective way. Critical systems, such as these that host customer data, must be protected with enhanced security and all operations must be protected using intelligent Multi-Factor Authentication solutions. If those controls were in place, an operation that deviates from trusted behavior would have raised the friction towards the attackers and provide immutable logs showing that the attack was in progress, allowing VFEmail to react quickly and potentially stop the breach before data was destroyed,” Fausto Oliveira, Principal Security Architect at Acceptto, told SecurityWeek. 

    Related: Destructive Xbash Linux Malware Targets Enterprise Intranets

    Related: Ransomware Attack Against Hosting Provider Confirms MSPs Are Prime Targets

    Ionut Arghire is an international correspondent for SecurityWeek.

    Previous Columns by Ionut Arghire:
    Tags:



    Source link

    Share. Facebook Twitter Pinterest LinkedIn Tumblr Email

    Related Posts

    Tips to bolster cybersecurity, incident response this 4th of July weekend

    July 1, 2022 Cyber Security

    Jon Raper named CISO at Costco

    July 1, 2022 Cyber Security

    2022 RSAC takeaways: Risk management vs compliance

    July 1, 2022 Cyber Security

    3 security lessons we haven’t learned from the Kaseya breach

    July 1, 2022 Cyber Security

    Auston Davis named CISO at Versant Health

    June 30, 2022 Cyber Security

    Lessons learned from slew of recent data breaches

    June 30, 2022 Cyber Security
    Editors Picks

    Turkish inflation nears 80% as Erdoğan’s monetary policy takes toll

    July 4, 2022

    Coinbase Plans Expansion into Europe amid Market Downturn

    July 4, 2022

    Beijing silent over Xi Jinping’s brush with Covid-19 in Hong Kong

    July 4, 2022

    Babel Finance Hires Restructuring Specialist Houlihan Lokey: Sources

    July 4, 2022
    Trending Now

    Voyager Digital Suspends Crypto Trading, Deposits, And Withdrawals

    By techbizweb

    Brussels pushes for tougher sanctions enforcement via EU-wide body

    By techbizweb

    GBTC’s Discount to NAV Hits New Record Low after SEC Declining its Bitcoin Spot ETF Application

    By techbizweb

    https://www.nationalsportsacademy.com

    slot gacor hari ini

    http://www.inadesfo.org/

    http://www.eueomgbissau.org/

    http://www.congo-mai-mai.net/

    http://www.angelesdelafrontera.org/

    http://fifaworldcup2018schedule.com/

    http://tony4gtrmcr.co.uk/

    http://www.standrewsagreement.org/

    http://www.bob-russell.co.uk/

    http://davidmulholland.co.uk/

    http://railwayhotelenniskillen.com/

    http://www.fantasysportstrades.com/

    http://www.rainleaf-flooring.com

    http://mothersagainstguns.org/

    http://ma-coc.org/

    slot online

    http://www.paradoxmag.com/situs-judi-slot-online-gampang-menang-2021/

    http://www.paradoxmag.com/situs-judi-slot-online-terbaru-2021/

    http://slot-terbaru.net/

    Slot Gacor

    Slot Online

    Situs Slot Gacor

    http://www.appdexterity.com/

    https://cars4kids-deutschland.de/

    https://www.stretchingculture.com/

    https://www.b-123-hp.com/slot-gacor/

    https://denzstaffing.nl/

    https://ezbbqcooking.com/slot-gacor/

    https://www.mbahelp24.com/slot-gacor

    https://minhtanstore.com/slot-jackpot-terbesar/

    https://njbpusupplierdiversity.com/slot-gacor-gampang-menang/

    https://www.floridaspecialtycropfoundation.org/slot-gampang-menang/

    https://childrenscornerpreschool.org/slot-gacor-gampang-menang/

    https://cryptoquoter.com/slot-online-terbaik/

    https://alorkantho24.com/slot-gacor/

    https://ellas.xyz/slot-gacor/

    https://it.dougamatome.xyz/slot-online/

    https://www.daltercume.com/slot-gacor/

    https://josi-ana.dougamatome.xyz/slot88/

    https://josi-ana.dougamatome.xyz/slot-gacor/

    https://fastobserver.com/slot-jackpot-terbesar/

    https://www.planetexperts.com/slot-gacor/

    https://bfsolution.group/slot-bet-kecil/

    https://rustleva.co/slot/

    https://bfsolution.group/slot-bet-kecil/

    https://www.hotelcalimareal.com/togel-online/

    https://anime-game.dougamatome.xyz/slot-gacor-gampang-menang/

    https://anime-game.dougamatome.xyz/togel-online/

    https://bourbonbarrelfoods.com/slot/

    http://suneo39.wp.xdomain.jp/slot/

    https://techbizweb.com/slot-gacor/

    https://www.generalcatalyst.com/18-daftar-slot-gacor-terbaik-gampang-menang-jackpot-hari-ini/

    https://www.hotelcalimareal.com/slot-online/

    https://www.blockgates.io/slot-gacor/

    https://l12.com.br/slot-gacor/

    slot paling gacor

    https://www.donalds-hobby.com/slot-online/

    https://thecryptodirt.com/slot-gacor-hari-ini/

    http://iseta.edu.ar/aulavirtual/app/upload/users/1/1205/my_files/sbobet.html

    http://escuelavirtual.mincit.gov.co/app/upload/users/1/194/my_files/slot.html

    https://www.dev.medecinesfax.org/courses/JUDICASINO/document/slot.html

    http://www.e-archivos.org/cursos/courses/JUDICASINO/document/slot-gacor.html

    http://iesma.com.br/ead/main/upload/users/4/447/my_files/slot.html

    https://www.fundacoop.org/chamilo/app/upload/users/1/1185/my_files/slot.html

    https://fata-aatf.org/eskola/main/upload/users/3/31/my_files/slot.html

    https://uancv.edu.pe/ofinvestigacion/app/upload/users/3/328/my_files/slot-terlengkap.html

    https://micost.edu.my/EL/app/upload/users/2/209/my_files/slot-gacor.html

    https://www.academiacoderdojo.ro/elearningdev/app/upload/users/2/2442/my_files/slot-online.html

    http://campus-cidci.ulg.ac.be/courses/JUDICASINO/document/slot-termurah.html

    https://www.escueladerobotica.misiones.gob.ar/aula-ste/courses/LIVECASINO/document/slot-tergacor.html

    http://ccdipeepccqqfar.usac.edu.gt/chamilo/app/upload/users/3/358/my_files/slot-online.html

    https://cunori.edu.gt/campus/app/upload/users/7/7334/my_files/slot-online.html

    http://u-rus.com.ar/aula/app/upload/users/1/1322/my_files/slot.html

    http://icrodarisoveria.edu.it/chamilo/app/upload/users/1/1855/my_files/slot.html

    https://iestpliliagutierrez.edu.pe/clarolgm/courses/CASINO/document/slot.html

    http://pva.cobach.edu.mx/app/upload/users/7/7379/my_files/slot.html

    http://www.imb-pc-online.edu.gt/PL/app/upload/users/3/373/my_files/slot.html

    http://avcs.upeu.edu.pe/main/upload/users/3333/my_files/slot.html

    https://chamilo.fca.uas.edu.mx/app/upload/users/1/11186/my_files/slot-online/

    TechBizWeb
    Facebook Twitter Instagram Pinterest Vimeo YouTube
    • Home
    • Guest Post
    • About Us
    • Privacy Policy
    • Our Authors
    • Terms and Conditions
    • Contact
    © 2022 Tech Biz Web. Developed by Sawah Dev.

    Type above and press Enter to search. Press Esc to cancel.