SmarterASP.NET, a US hosting provider has been hit by a ransomware attack, impacting its 440,000+ customers.
Over the weekend, hackers had breached the SmarterASP.NET network and encrypted data on customer servers. Additionally, the attack also impacted the company’s website which went offline on Saturday.
The files seem to have been encrypted by a ransomware that adds the “.kjhbx” extension to the file, however without a sample file it cannot be confirmed.
It remains unclear as to whether the company has paid any ransom demand to the hackers or if they have been able to decrypt the locked files. According to SmarterASP.NET, 40% of affected accounts have been recovered as of this morning.
The company said in a notice: “Your hosting account was under attack and hackers have encrypted all your data. We are now working with security experts to try to decrypt your data and also to make sure this would never happen again.”
Earlier this morning, the company tweeted that it would focus on recovering the database servers first.
“Once that’s recovered, most of your sites will be up and running already. You will also be able to make DB backup right away on our control panel
“We are optimistic that everything will be back to normal no longer than 12-24hours. We will not go home until everyone is taken care of. Thank you once more for your patience.”
SmarterASP.NET is not the first hosting provider to be hit by ransomware. In May, A2 Hosting had its servers in Asia and North American encrypted by a variation of the Globelmposter 2.0 ransomware strain.
The post #Privacy: Hosting provider SmarterASP.NET struck by ransomware attack appeared first on PrivSec Report.