Cloud provider Leaseweb was forced to shut down some of its critical systems to mitigate the effects of an ongoing cyberattack.
Leasweb, one of the world’s largest cloud and hosting providers, reached out to its customers to warn them that it had noticed “unusual” activity in some parts of its infrastructure.
To minimize the potential damage and drive out the unauthorized lurkers, the company has disabled some of the affected systems.
Successful containment
“On the night of August 22, our monitoring systems detected unusual activity within certain parts of our cloud environments. The issue impacted a specific part of our cloud-based infrastructure, resulting in downtime for a small number of cloud customers,” said the spokesperson. the company said in its email.
“In response to this event, we have taken swift and determined steps to mitigate potential risks. This includes temporarily disabling certain critical systems that affect the customer portal. Our teams are working hard to restore the systems and we expect the customer portal to be back up and running within hours.”
In addition to responding to minimize the damage, the company also hired an outside cybersecurity firm to further analyze the incident and formulate a strategy for the future.
“To ensure our services remain safe and reliable, we have strong containment plans in place and are working closely with a respected cybersecurity and forensics company,” the post reads. “Our investigation is ongoing, but we have successfully brought the incident under control, improved our security measures and found no more unauthorized activity.”
Leaseweb would have more than 20,000 customers, both SMEs and large companies. It has been operating since 1997 and operates 25 data centers around the world, housing more than 80,000 servers.
At the time of writing, the company was silent on the matter and its Twitter account showed nothing about the incident.
Through: Bleeping Computer