A “multi-stage” cyber attack recently forced the code hosting service Code Spaces to shut down permanently, according to a recent article published by E Security Planet. The article indicates that the wave of attacks began on June 17th with a Distributed Denial-of-Service (DDoS) attack but was quickly followed by other intrusions which steadily began to beat on the services vulnerabilities.
The “Code Spaces’ Amazon EC2 control panel” was also breached during the attack which then allowed the “unidentified attacker” to leave messages “asking the company to contact a Hotmail address” according to the report. When the attacker received a reply from the message, the article stated that an immediate ransom demand was made to “resolve the DDoS attack.” Knowing that the control panel had been accessed, Code Spaces proceeded to change the password since it was assumed that the invader was “unable to get any further without the company’s private keys.”
Unfortunately, according to the article, “the hacker had already created several backup logins.” Code Spaces published a statement on their website which noted, “upon seeing us make the attempted recovery of the account he proceeded to randomly delete artifacts from the panel“, according to the article. Their statement continued to describe the continued, tragic events in the article by saying, “We finally managed to get our panel access back but not before he had removed all EBS snapshots, S3 buckets, all AMIs, some EBS instances and several machine instances. In summary, most of our data, backups, machine configurations and offsite backups were either partially or completely deleted.”
Read more in the full article how this event has devastated Code Spaces and left them “in a irreversible position both financially and in terms of ongoing credibility.”