Sangoma has relased an updated (and likely final) statement.

https://www.sangoma.com/press-releases/sangoma-technologies-provides-update-on-ransomware-attack-expects-no-material-impact-on-sales/

The second paragraph has the relevant information from an IT point of view.

00a7b475-033f-4db6-8311-b115d6bb0a47-image.png

@Pete-S said in “Catastrophic” hack on email provider destroys almost two decades of data:

So if you make a backup to something like Backblaze. Would that be considered an offline backup?

Depends how it is done. It's online, not offline. But it can be airgapped.

@stacksofplates said in Suddenly hit from lots of different places today.:

@travisdh1 said in Suddenly hit from lots of different places today.:

@stacksofplates said in Suddenly hit from lots of different places today.:

@travisdh1 said in Suddenly hit from lots of different places today.:

@dafyre said in Suddenly hit from lots of different places today.:

@travisdh1 I'm totally shocked... not a single hit for root as the login name!

I know right 😕

When I first started here, the website was hosted on a Windows Server VPS, so the administrator at least makes a little sense.

Also, remote root login (the only one available because it's a VPS) is key based. So go ahead and try logging in as root with a password.

Ha we can't log in with root at all over SSH.

While it's very tempting to do just that, the only user the system started with was root. If I have to burn it all down, I need some way to access the thing.

Ah ic. Do you not have console access?

I do, but the only user on the system was created after the OS/cPanel was installed. So if I have to nuke it from orbit, I kinda need that access.

Yup, this is one of the most common apps installed by more power users for Android, period.

Looks like the issue is with NTP dæmons, not with NTP clients. So in the SMB, very few people would be impacted. Running internal NTP is uncommon until you are relatively large.