Ransomware Attack on CloudNordic paralyzes company and customers

Ransomware Attack on CloudNordic paralyzes company and customers
of Jens E. Hummelmose- 22 August 2023- 14


On Friday, August 18, 2023, CloudNordic, a leading provider of cloud services, fell victim to a serious ransomware attack. The hackers took control of all systems, resulting in extensive downtime and data loss for both the company and their customers.
The attack was discovered at 04:00, and since then CloudNordic's IT experts have been working intensively to regain control. Unfortunately, it has proven impossible to recover the lost data, which means that the majority of their customers have lost all data that was stored with CloudNordic. The incident has been reported to the police.

The company has taken steps to restore blank systems, including name servers, web servers and mail servers, all without previous data. Customers now have the option to have their email and web services restored by contacting the company directly.



Recommend you move provider
However, in order to minimize the downtime, CloudNordic recommends critically affected customers to transfer their hosting agreements to other providers. Business customers are referred to Powernet, while private customers are recommended to contact Nordicway.

In the meantime, CloudNordic's customers have also been given the opportunity to take steps themselves to recover their services, including re-establishing domain administration tasks and own website from local backups or archived copies on the Wayback Machine.

Detailed information about the attack suggests that the infection may have originated from a previously undetected malware on servers that had to be moved between data centers. This unattended threat allowed the hackers to infect central administration systems and backup systems from which they encrypted all server disks.

Although there was an encryption of data, CloudNordic has currently seen no signs of a data breach. The company emphasizes that they have found no evidence that the hackers had access to the actual data content of the machines.

CloudNordic expresses its deep regret for the situation and thanks its loyal customers for their patience.