enardeitjaptrues

Cloud services and hosting provider Rackspace Technology acknowledged Tuesday that a recent incident that took most of its Hosted Exchange email server business offline was the product of a ransomware attack. The company shut the service down last Friday.

It was not initially clear what had caused the outage, but Rackspace quickly moved to shift Exchange customers over to Microsoft 365, as this part of the company’s infrastructure was apparently unaffected.

Rackspace offers migration to Microsoft 365

Rackspace said today that there is “no timeline” for restoration of Exchange service, but it is offering Exchange users technical assistance and free access to Microsoft 365 as a substitute, though it acknowledged that migration is unlikely to be a simple process for every user. Rackspace said that, while the migration is in progress, customers can forward emails sent to their Hosted Exchange inboxes to an external server, as a temporary workaround.

The company said that the incident was isolated to its Hosted Exchange business and that the rest of its lineup of products and services are fully functional. It’s unclear how Rackspace was able to limit the access of the ransomware attackers to one corner of its operations, and the company did not respond to a request for comment on this point.

The investigation is “still in its early stages,” according to Rackspace’s official updates on the matter. The company added that it is, as yet, unable to ascertain whether any consumer data was affected by the attack, but pledged to notify customers if that proves to be the case. Some email archives remain accessible, according to the updates, and Rackspace said that it is working to provide those to customers “where available,” as a precursor to migrating over to Microsoft 365.

Rackspace has also hired “a leading cyber defense firm” to assist in the investigation, though it declined to name the company publicly.