Security News > 2023 > February > Lessons Learned on Ransomware Prevention from the Rackspace Attack
The ransomware attack on Rackspace has taught us the importance of good cybersecurity habits.
Rackspace took to social media on December 6, 2022, posting on Twitter that the outage resulted from a ransomware attack.
The Rackspace forensic investigation determined the threat actor is a relatively newer ransomware group known as PLAY. Additionally, it is believed that the PLAY group was financially motivated to carry out the attack and may have gained access to a relatively small number of customers' email data.
The Play hacker group developed a new exploit, bypassing the mitigations for ProxyNotShell and launching the ransomware attack on the Rackspace Hosted Exchange environment.
As shown by the Rackspace attack, attackers often use unpatched vulnerabilities to attack critical systems and launch ransomware attacks.
Ransomware is a growing concern for organizations worldwide, as the fallout and consequences of suffering a ransomware attack are usually severe.
News URL
Related news
- Canada's London Drugs confirms ransomware attack after LockBit demands $25M (source)
- Ransomware Attacks Exploit VMware ESXi Vulnerabilities in Alarming Pattern (source)
- London hospitals left in critical condition after ransomware attack (source)
- Major London hospitals disrupted by Synnovis ransomware attack (source)
- Qilin ransomware gang linked to attack on London hospitals (source)
- London hospitals face blood shortage after Synnovis ransomware attack (source)
- Black Basta ransomware gang linked to Windows zero-day attacks (source)
- Panera warns of employee data breach after March ransomware attack (source)
- Toronto District School Board hit by a ransomware attack (source)
- CISA warns of Windows bug exploited in ransomware attacks (source)