B2B Cyber Security already reported on May 11th about the cyber attack on the international cleaning company CWS, which was published by the Dutch platform Security.NL. There does not seem to be an official CWS statement, but the website still informs customers that the systems are having technical problems.
The CWS company was founded before May 11, 2022, according to the portal Security.NL a victim of ransomware. How severe the attack was and what damage it caused is not reported. However, the company's website still indicates that it has technical issues and is working on them.
Still technical problems
The exact text of the note on the CWS website reads:
“Due to technical issues, our CWS services are currently experiencing delays. We apologize for any inconvenience and will be in touch with our customers once the issues are resolved. We thank you for your understanding."
Attacks on companies are increasing
Even if Security.NL does not report exactly what kind of attack hit CWS, like many other companies affected, they seem to be struggling with the effects. In other attacks that hit companies, restoring the entire IT often took weeks and months. Severe data loss from an attack has also been reported in some cases. For fear of such consequences, more and more companies are probably paying the ransom demanded to be able to decrypt their data after a ransomware attack – if they get it. This is also reported by a current Kaspersky study. In it, 88 percent of companies that have already been victimized and paid a ransom state that they would pay again.
First report from May 11, 2022 also B2B Cyber Security
According to a report by Security.NL, the international cleaning company CWS has been hit by a cyber attack. In an email to customers, CWS informs that it has to shut down all systems in the data center for data protection.
As the site Security.NL reports, it has received an email from the customers of the cleaning company CWS, which reports a cyber attack on the company. Apparently there was a notice on the CWS website as well. However, this has now been completely removed. This may mean that the attack is already under control. However, Security.NL wants information that the attack is a ransomware attack.
Systems in the data center shut down
According to Security.NL, the message informed customers that the entire data center had been shut down and disconnected to protect systems and data and limit the consequences of the incident. The content of the email is said to have read as follows: "As a result of the incident, an unauthorized third party may have had access to our systems and data. In addition, due to the shutdown and shutdown of our data center, we are currently unable to fully use our systems.
The investigation into the attack is still ongoing. "We sincerely apologize for the inconvenience caused and stand ready to help you in any way we can. We understand if you would like more information or have any questions. We will do everything we can to be available for you, but we will be less available than you are used to from us,” according to Security.NL CWS concludes the email to customers.
More at Security.nl