[BlueOnyx:22184] Re: Jungle_Sec Ransomware

Fungal Style wayin at hotmail.com
Tue Jun 26 23:04:31 -05 2018 

I was just about to add questions as well...

Chris,

Was this the only site on the server? If not was it only the vsite affected?
(If it is just the vSite, then it was contained that is not so bad and we can sleep *a little* tonight...)

Although I am assuming it is a blueonyx server, would I be correct?

Do we know how they got in, as in was it a file uploaded via an exploit in the site (or FTP, etc)?

Regards
Brian

On 27/6/18, 2:01 pm, "Blueonyx on behalf of Ken Hohhof" <blueonyx-bounces at mail.blueonyx.it on behalf of khohhof at kwom.com> wrote:

    Can you expand on "vulnerable websites"?
    
    -----Original Message-----
    From: Blueonyx <blueonyx-bounces at mail.blueonyx.it> On Behalf Of Chris
    Gebhardt - VIRTBIZ Internet
    Sent: Tuesday, June 26, 2018 10:34 PM
    To: Blueonyx at mail.blueonyx.it
    Subject: [BlueOnyx:22182] Jungle_Sec Ransomware
    
    Just thought I'd post a quick note.  Make sure you've got backups, your
    backups are stored off-server, and you are enforcing strong passwords 
    and cracking down on vulnerable websites.   We're working with a 
    customer that has been infected by the new Jungle_Sec ransomware 
    variant.   It's not just Windows machines that are vulnerable anymore.
    
    And if you happen to know of someone expert in these matters (or you,
    yourself may be) then hit me up offline.  I don't pretend to have all the
    answers and have directed the customer to reach out to someone with
    experience in this sort of thing.  We think there are clean backups, but 
    it's a roughly 20TB site that got hit.   Yeah... it's big.  (To answer 
    the obvious, I've already recommended against paying the .4 bitcoin
    ransom.)
    
    -- 
    Chris Gebhardt
    VIRTBIZ Internet Services
    Access, Web Hosting, Colocation, Dedicated
    www.virtbiz.com | toll-free (866) 4 VIRTBIZ
    _______________________________________________
    Blueonyx mailing list
    Blueonyx at mail.blueonyx.it
    http://mail.blueonyx.it/mailman/listinfo/blueonyx
    
    
    _______________________________________________
    Blueonyx mailing list
    Blueonyx at mail.blueonyx.it
    http://mail.blueonyx.it/mailman/listinfo/blueonyx

More information about the Blueonyx mailing list