Cloudcone hit by ransomware via Virtualizor exploit
Cloudcone is reporting a security breach where attackers used the Virtualizor "Server Terminal" to bypass SSH alerts and run a ransom script on a subset of nodes.
What happened: Affected VMs had their boot sectors overwritten with ransom messages.
Scope: Limited to nodes on a single Virtualizor instance. Other platforms and billing/personal data were not impacted.
Recovery: The team is currently attempting data recovery via raw block devices and partition reconstruction.
Affected users should keep an eye on their email for further updates from Cloudcone.
发表于 