iNSYNQ Cloud Hosting Firm Confirms MegaCortex Ransomware Attack

iNSYNQ, a cloud-based hosting firm, has become the latest victim of a MegaCortex ransomware attack. The attack encrypted data belonging to some iNSYNQ clients. iNSYNQ is an authorized Microsoft, Intuit, and Sage host and provides customers with cloud-based virtual desktops for business applications such as QuickBooks. The firm was forced to take down its infrastructure since the July 16th attack to prevent proliferation, and has provided a status update. Clients have requested the firm provide their cloud-based data backups, however, iNSYNQ stated, “they cannot safely access them at this time.” The backups were on a separate server, but on the same network and must be checked prior to release. The firm has enlisted the services of industry-leading experts to assist in restoration efforts. The NJCCIC highly recommends users create at least two copies of the original data and save these backups in varied formats—such as an external hard drive and cloud storage—keeping one offsite in a secure location. Also, users are advised to ensure backups are updated and tested regularly. For further information regarding this incident, please review the SC Magazine article.