Following a ransomware attack that affected its hosted Microsoft Exchange environment, cloud computing firm Rackspace issued a warning to clients on Thursday about rising phishing attack threats.
Currently, the company is still looking into the event and working to restore service to the affected systems, but it warns that cybercriminals might also profit from and use this situation for their own ends.
Customers Beware
In a status posted on the company’s website, Rackspace warns customers to be cautious, and to not interact with emails and messages from individuals they do not recognize.
If you do receive a message from an individual you do not recognize, do not reply. Please login to your control panel and create a ticket, including details about the message you received,
The company also gave some advice on how to spot scammers attempting to steal their sensitive data. According to Rackspace:
- Emails from Rackspace will be sent from @rackspace.com emails (although attackers might still use a spoofed email address and redirect their targets to a landing phishing page)
- Rackspace support will not ask for login credentials or personal information (e.g., social security number, driver’s license) during phone calls
As reported by BleepingComputer, customers were urged to keep an eye on their credit reports and bank account statements for any unusual behavior, even though the firm hasn’t said whether it has any proof that the attackers stole data from its servers during the incident. Some customers have also been reporting an increase in phishing emails, impersonating Rackspace.
No Details on the Attackers Yet
Rackspace is yet to provide any details on the identity of the attackers and what data they could access or exfiltrate during the incident. Cybersecurity experts were hired to investigate the attacks, but according to Rackspace, the investigation is in its early stages.
Additionally, the business disclosed in a press release and an 8-K filing submitted to the U.S. Securities and Exchange Commission said Tuesday that it expects a loss of income for its Hosted Exchange business owing to the impact of the ransomware attack, which earns around $30 million in revenue annually.
Since the incident was discovered, the company has provided affected customers with Microsoft Exchange Plan 1 licenses and detailed information in the incident report.
If you liked this article, follow us on LinkedIn, Twitter, Facebook, Youtube, and Instagram for more cybersecurity news and topics.