On November 16, 2020 our website and email hosting provider was attacked by a coordinated ransomware campaign—a malicious software that “kidnaps” server files until a ransom is paid. As a result, our provider shut down all of their servers to prevent the attack from spreading further, resulting in the outage we experienced on November 16th, 2020.
Client websites were brought online by migrating to new authoritative nameservers. The migration was completed November 27, 2020—bringing branded emails and legacy client websites back online. Some client websites were intermittently down until November 30, 2020.
On December 10, 2020, our initial hosting provider was able to confirm none of Churchweb’s branded emails or client websites were accessed during the attack. All email account passwords were reset as a precaution.
We are working on additional protections for branded emails and authoritative nameservers with a secondary hosting provider. We have improved our disaster recovery plan with hourly off-site backups for branded emails.
Wednesday, April 28, 2021