Managed.com, one of the largest web hosting providers, shut down all servers after being ransomware attacked. The attack took place on Monday 16 November with ransomware affecting the company's web hosting systems, resulting in them being encrypted data from customer sites.
Managed.com said the security incident affected only a limited number of customer sites, which the company put offline directly. Hours after the attack, Managed.com said it was shutting down its entire web hosting infrastructure, which it is trying to restore. This included hosting solutions WordPress and DotNetNuke, e-mail servers, DNS servers, points access RDP (Remote Desktop Protocol), FTP (File Transfer Protocol) servers and online databases.
According to ZDNet, the company initially announced that it proceeded with these maintenance actions, without stating that it was attacked by ransomware, but eventually confirmed the incident via email and messages sent by the company's technical support providers to a large number of dissatisfied customers.
The company stressed that it is currently cooperating with law enforcement to identify the intruders and restore the systems of its customers as soon as possible. However, its customers express their fear that their sites will be left out operation for days or even weeks. In addition, they report a similar incident that happened to another web hosting provider, A2 Hosting, in May 2019. In this case, the affected company took more than a month to recover, during which a large number of its customers had to wait for the data of their sites to be restored.
Managed.com is now among the growing number of ransomware incidents that have affected web hosting and data center providers. The list of victims also includes Equinix, CyrusOne, Cognizant, X-Cart, SmarterASP.NET, Dataresolution.net and Internet Nayana.