HR software program and payroll powerhouse SD Worx suffered a cyberattack final week, forcing it to close down a few of its IT techniques.
In a notification issued to probably affected clients, SD Worx mentioned it noticed malicious conduct in its networks and endpoints (opens in new tab), so so as to isolate the risk, ceased operation of its techniques for UK and Eire clients.
“Our security team discovered malicious activities in our hosted data center last night,” the notification reads. “We have taken immediate action and have preventively isolated all systems and servers to mitigate any further impact. As a result, there is currently no access to our systems, which we deeply regret of course.”
Not a ransomware attack
As of today, the login portal for UK and Ireland customers is still offline, but other portals are working.
“SD Worx emphasizes that it applies extraordinarily stringent organizational and technical safety measures to safe the privateness and knowledge of its clients always. It goes with out saying that we’re dealing with this with the very best precedence and that we’re working very laborious on an answer to offer you entry to our techniques once more. We are going to preserve you knowledgeable concerning the additional standing,” the notification concluded.”
When a company shuts down its IT systems after a cyberattack, it usually means it fell victim to a ransomware attack and lost sensitive files. However, SD Worx confirmed to BleepingComputer that this wasn’t a ransomware attack and that so far, there’s no evidence of any data being taken.
“We’re additional investigating this case and might affirm that this isn’t a ransomware assault. Additionally, right now there isn’t any proof to imagine that any knowledge has been compromised. The explanation why now we have pre-emptively remoted our techniques is to mitigate any additional affect and adequately assess the risk.”
SD Works has more than 80,000 clients, its website claims, servicing more than five million employees. Being an HR and payroll management firm, it handles plenty of sensitive information such as tax data, ID numbers, bank account numbers, phone numbers, and more. If this indeed turns out to be grand theft data, hackers could get their hands on some important information.
Via: BleepingComputer (opens in new tab)