A widely-used ASP.NET service provider, used by more than 440,000 customers, was taken offline on Saturday after cyber criminals targeted its systems with ransomware.
SmarterASP confirmed this weekend that its hosting services were under attack, with hackers encrypting all the data belonging to itself as well as its 440,441 users. The SmarterASP website, too, was taken offline on Saturday before it was restored the next day.
"Your hosting account was under attack and hackers have encrypted all your data," the provider said in a statement.
The most popular ransomware strains targeting UK businesses How to keep your files safe from ransomware How can you protect your business from crypto-ransomware?
"We are now working with security experts to try to decrypt your data and also to make sure this would never happen again. Please stay tuned for more info."
The firm advised that users refrain from contacting the company directly, given a shortage of staff to deal with the complaints, and asked users to keep up-to-date with its Facebook page for more information.
SmarterASP subsequently said this morning that it had developed a solution to resolving the problem, but needs more time to fully restore services. Moreover, work is underway on a "new system" built to prevent issues recurring in the future.
"We will dedicate all of our time, money and knowledge on this matter so no customers of ours have to face this again," the followup statement said.
However, no additional detail as to the nature of the new system, or how it would be different from SmarterASP's previous system, was released.
At the time of writing, the company has restored 40% of its customers' affected accounts, according to its Facebook page, and expects most services to be restored over the next 24 hours.
ASP.NET is an open-source web application framework designed for web development based around dynamic design. It was developed by Microsoft to allow developers to build dynamic websites as well as applications and services.
The company hasn't disclosed whether it's restoring its services from an archival or backup system, or whether it's complied with the cyber criminals' ransom demands.
Although the majority of IT security professionals don't believe such ransoms should be paid, 40% would consider paying ransomware demands as it's the easiest method of remediation, according to research.
IT Pro approached the company for more details surrounding the ransomware attack, including what measures it's taken to prevent future attacks.
-
Researchers claim Salt Typhoon masterminds learned their trade at Cisco Network AcademyNews The Salt Typhoon hacker group has targeted telecoms operators and US National Guard networks in recent years
-
HPE says unified channel strategy won't force Juniper partners to generalizeNews Does the company embrace specialists or want a full portfolio push? The answer, it seems, is both
-
15-year-old revealed as key player in Scattered LAPSUS$ HuntersNews 'Rey' says he's trying to leave Scattered LAPSUS$ Hunters and is prepared to cooperate with law enforcement
-
The Scattered Lapsus$ Hunters group is targeting Zendesk customers – here’s what you need to knowNews The group appears to be infecting support and help-desk personnel with remote access trojans and other forms of malware
-
Impact of Asahi cyber attack laid bare as company confirms 1.5 million customers exposedNews No ransom has been paid, said president and group CEO Atsushi Katsuki, and the company is restoring its systems
-
The US, UK, and Australia just imposed sanctions on a Russian cyber crime group – 'we are exposing their dark networks and going after those responsible'News Media Land offers 'bulletproof' hosting services used for ransomware and DDoS attacks around the world
-
A notorious ransomware group is spreading fake Microsoft Teams ads to snare victimsNews The Rhysida ransomware group is leveraging Trusted Signing from Microsoft to lend plausibility to its activities
-
Volkswagen confirms security ‘incident’ amid ransomware breach claimsNews Volkswagen has confirmed a security "incident" has occurred, but insists no IT systems have been compromised.
-
The number of ransomware groups rockets as new, smaller players emergeNews The good news is that the number of victims remains steady
-
Teens arrested over nursery chain Kido hacknews The ransom attack caused widespread shock when the hackers published children's personal data
