CyrusOne has suffered a ransomware attack, and said they are currently working with law enforcement and forensics firms to investigate the attack.
Stating that Six of their managed service customers, located primarily in New York data center, have experienced availability issues due to a ransomware program encrypting certain devices in their network.
According to a copy of the ransom note, this was a targeted attack against the company's network.
A copy of the ransomware executable that is believed to have infected the company's network was uploaded on VirusTotal.
Source: https://www.zdnet.com/article/ransomware-attack-hits-major-us-data-center-provider/
TPRM report: https://scoringcyber.rankiteo.com/company/cyrusone
"id": "cyr391523",
"linkid": "cyrusone",
"type": "Ransomware",
"date": "12/2019",
"severity": "85",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"
{'affected_entities': [{'customers_affected': 'Six managed service customers',
'industry': 'Data Center Services',
'location': 'New York',
'name': 'CyrusOne',
'type': 'Company'}],
'data_breach': {'data_encryption': 'Encrypting certain devices'},
'description': 'CyrusOne has suffered a ransomware attack, and said they are '
'currently working with law enforcement and forensics firms to '
'investigate the attack. Six of their managed service '
'customers, located primarily in New York data center, have '
'experienced availability issues due to a ransomware program '
'encrypting certain devices in their network.',
'impact': {'downtime': 'Availability issues',
'operational_impact': 'Availability issues',
'systems_affected': ['Devices in the network',
'New York data center']},
'investigation_status': 'Ongoing',
'motivation': 'Financial Gain',
'ransomware': {'data_encryption': 'Encrypting certain devices'},
'references': [{'source': 'VirusTotal'}],
'response': {'law_enforcement_notified': True,
'third_party_assistance': ['Forensics firms']},
'title': 'CyrusOne Ransomware Attack',
'type': 'Ransomware'}