Home Cyber Security Cloud provider had to pay ransom even after stopping the attack

Cloud provider had to pay ransom even after stopping the attack

Ransom demands
Ransom demands

A strange thing has happened to a cloud provider as per the latest report we have received from ZDnet in which it is said that the cloud provider was attacked by ransomware. Now, the problem here is that if the ransomware attack is successful then there is no way you can escape without paying ransom since all files are locked and the encryption key is with the hackers. However, the strange thing here is that the cloud provider is known to be Blackbaud which also provide cloud hosting solutions stopped this ransomware attack.

Now, you would think that since the attack was stopped, no ransom would need to be paid right. No, that did not turn out to be the case as the report mentions that Blackbaud has had to pay the ransom to the hacker even though the attack was not successful. As per the company’s own revelation, the attack took place in May 2020 and that hackers breached its network and tried installing ransomware as per the press release. The company added that their cybersecurity experts and team “prevented the cybercriminal from blocking our system access and fully encrypting files, and ultimately expelled them from our system,”

The reason why Blackbaud had to pay hackers a ransom was that before forced out of the system, they managed to “steal a subset of data from its “self-hosted environment,”” meaning that not everything was lost but something was and they still needed to pay to gain access once again. Blackbaud said that “Because protecting our customers’ data is our top priority, we paid the cybercriminal’s demand with confirmation that the copy they removed had been destroyed,”. Since the hackers threatened to release Blackbaud’s data in public, the company had to pay the hackers and told them to destroy the files they had.