Data centre provider Equinix hit by ransomware
Early investigations suggest the attack is limited to the company's own internal systems
US data centre provider Equinix has been rocked by a major security incident, with some of its internal company systems compromised by ransomware.
The company revealed yesterday that its security teams took immediate action against the threat, notified law enforcement agencies, and are continuing to investigate the nature and scale of the infection.
The severity of the attack at this stage is unclear, with the company pledging to release further details soon. Thankfully for its customers, however, Equinix data centres and services, including its managed services, remained fully operational during the period of the attack, according to a statement released by the company.
“Equinix is currently investigating a security incident we detected that involves ransomware [on] some of our internal systems,” the company said.
“Note that as most customers operate their own equipment within Equinix data centers, this incident has had no impact on their operations or the data on their equipment at Equinix.”
Equinix provides an array of data centre and networking services for businesses, including data centre design, as well as colocation, which is the practice of housing privately-owned equipment in third-party data centres.
With internal systems kept separate from those that run many of the external services and from customers’ equipment housed in its data centres, the risk of the attack spilling over is said to be minimal, according to Equinix. Services are largely operating as normal at the time of writing.
There have been a number of high profile ransomware attacks in recent months, with a swathe of IT services companies similarly on the receiving end, in addition to high profile organisations like Canon and Honda.
RELATED RESOURCE
The trusted data centre
Best practices and business results for organisations based in Europe
Industry giant Cognizant, for example, recently experienced service disruptions for some of its clients. The IT services firm was targeted with Maze ransomware in April, with the incident costing the company around $70 million.
The attack on Equinix has similar hallmarks to one on CyrusOne in December 2019. In that instance, the company did sustain a degree of service disruption, with the attack affecting six customers served from one data centre based in New York.
-
Instructure chose to a pay ransom following the Canvas cyber attack – research shows more than half of security leaders would follow suitAnalysis Opting to pay ransoms creates huge risks for enterprises – you’re relying on the word of criminals
-
Ransomware negotiator sentenced for role in major cyber crime groupNews Deniss Zolotarjovs was a key player in a group associated with Conti
-
Threat actors ditch ‘spray and pray’ attacks in shift to targeted exploitationNews A dip in ransomware volumes points to a more targeted approach focused on vulnerability exploitation
-
Security leaders overconfident about ransomware recoveryNews Few manage to recover all their data, and many experience business disruption
-
German authorities want your help finding the hackers behind GandCrab and REvilNews Daniil Maksimovich Shchukin and Anatoly Sergeevitsch Kravchuk are believed to have made millions from ransomware as a service schemes
-
The rise of teen hackers ‘makes for a good headline’, but cyber crime activities peak later in life
News With family responsibilities and mortgages to pay, it's not teenagers dishing out malware or carrying out cyber extortion
-
Ransomware gangs are using employee monitoring software as a springboard for cyber attacks
News Two attempted attacks aimed to exploit Net Monitor for Employees Professional and SimpleHelp
-
Ransomware gangs are sharing virtual machines to wage cyber attacks on the cheap – but it could be their undoingNews Thousands of attacker servers all had the same autogenerated Windows hostnames, according to Sophos
