Both CloudNordic and Azero said that they were working to rebuild customers’ web and email systems from scratch, albeit without their data.
Yea… Don’t bother. But, do expect to hear from my lawyers…
CloudNordic said that it “had no knowledge that there was an infection.” CloudNordic and Azero are owned by Denmark-registered Certiqa Holding, which also owns Netquest, a provider of threat intelligence for telcos and governments.
Edit-
How do you fuck up this badly in 2023? I can see this happening in 1999.
Ransomware attacks aren’t new. Although, I find it weird that a cloud host doesn’t have backups.
CloudNordic said: “The attackers succeeded in encrypting all servers’ disks, as well as on the primary and secondary backup system, whereby all machines crashed and we lost access to all data
They did. They were affected too, if you read the article.
If your backups are online and not in a warehouse, you are doing it wrong. Even my own personal backups are on disconnected disks. What a bunch of amateurs.
If you don’t know you are infected and you’ve been infected for a couple months, your backups are worthless.
That’s why you do regular restore tests on separate systems. That should be standard procedure for any company. A fully encrypted disk should be noticable immediately.