Cyber Attack Disables MSP NetStandart Services

The US MSP provider (Managed Services Provider) NetStandard was hit by a cyberattack, as a result of which the company closed its MyAppsAnywhere cloud services, which include Dynamics GP, Exchange, Sharepoint and CRM services.

According to a notice sent to MyAppsAnywhere customers on Reddit, the company detected signs of a cyberattack on the morning of July 26 and quickly shut down cloud services to prevent the attack from spreading.

As of 11:30 am CDT on July 26, NetStandard detected signs of a cyberattack in the MyAppsAnywhere environment. Since then, our engineering team has been actively involved in incident resolution, working to isolate the threat and minimize the consequences. MyAppsAnywhere services, including Hosted GP, Hosted CRM, Hosted Exchange, and Hosted Sharepoint, will be disabled until further notice. No other NetStandard services are affected at this time.NetStandard wrote in the email.

Let me remind you that we recently reported that IIS Extensions Are Increasingly Being Used as Exchange Backdoors, and also that the Number of unique cyberattacks decreased for the first time in several years.

NetStandard hired its insurance company, which provided security experts to help identify the source of the attack and bring systems back online. According to NetStandart, only MyAppsAnywhere services are affected, but the attack had a wider impact because the company’s main site is also down.

Cyberattack on NetStandart services

Kyle Hanslovan
Kyle Hanslovan

Since NetStandard does not provide any details, it is not clear what type of attack occurred. However, cybersecurity researchers believe it was a ransomware attack.

Huntress Lab CEO Kyle Hanslovan took to Twitter on July 26 to share a discovered post on a hacker forum in which an attacker was looking for partners to launch an attack on a managed service provider. According to a user posting on the Russian-language forum Exploit, he has access to an MSP vendor panel that manages over 50 companies, 100 VMware ESXi servers, and over 1,000 servers.

Cyberattack on NetStandart services

However, it is not yet clear whether this message is related to an attack on NetStandard or it is just a coincidence.

Previously, cybersecurity agencies in the US, UK, Australia and Canada warned of an increase in cyberattacks against Managed Service Providers (MSPs) and made recommendations for protecting companies and their customers’ systems.
User Review
0 (0 votes)
Comments Rating 0 (0 reviews)

Daniel Zimmermann

Daniel Zimmermann has been writing on security and malware subjects for many years and has been working in the security industry for over 10 years. Daniel was educated at the Saarland University in Saarbrücken, Germany and currently lives in New York.

Related Articles

Leave a Reply

Your email address will not be published. Required fields are marked *


This site uses Akismet to reduce spam. Learn how your comment data is processed.

Back to top button