News April 20, 2023
32 Supplier Websites Restored Following Reported Ransomware Breach
Artwork Services USA, which hosts the sites, worked quickly to isolate the attack, returning all sites to service within about 32 hours.
Word of the ransomware attack on the 32 promotional products suppliers’ websites hit around 4:35 a.m.
Within six hours, nearly 50% of the sites were restored. All were back up and running within 32 hours.
Those are some of the key details from a cyberbreach that happened early the week of April 17, according to Artwork Services USA (AWS, asi/820124), a technology solutions provider to the promotional products industry.
The ransomware incursion affected what AWS described as legacy websites – those built on older tech architecture – that the firm was hosting on servers for the impacted supplier clients.
AWS works with more than 400 promo suppliers and distributors, and hosts hundreds of websites. Sites hosted on newer, cloud-based AWS websites were unaffected by the breach, the service provider said.
Scott A. Nussinow, executive vice president of AWS, told ASI Media there’s no evidence that sensitive information about the suppliers’ customers was compromised. Things like credit card numbers, for instance, aren’t stored on the sites, he confirmed.
Nussinow said it’s unclear how the hackers penetrated the sites. He noted though that older, end-of-life websites and software applications can pose a critical security risk.
“Without vital security patches and updates, companies and their systems are increasingly vulnerable to attack,” he said in a statement. “All too often, the interruption and the cost of mitigation – ransom, recovery and restoration – can be catastrophic.”
A public statement from AWS said the firm acted quickly to battle the breach – which included swiftly notifying customers.
“The AWS security response team immediately undertook all necessary steps to identify and isolate the ransomware incursion,” said the statement. “The communications team then gathered the salient information and crafted messaging to the 32 affected legacy website customers.”
Ultimately, the sites made it back online. “We threw a lot of talent at this,” Nussinow told ASI Media.
Hackers have been working overtime it seems, with cyberattacks rising across industries. Promo is no exception. Companies that range from Top 40 firms to mom-and-pop businesses have been victimized. Cyber testing and following best practices can help provide protection. Cyber insurance, though potentially expensive, can be a smart investment, some industry executives say.