Stor-a-File, a British data capture and storage company, suffered a ransomware attack in August that exploited an unpatched instance of SolarWinds’ Serv-U FTP software.
The company informed its clients about the September attack, and told The Register that it refused to pay. We understand some data has been leaked by ransomware criminals on a Tor blog.
In a statement Stor-a-File said: “The incident occurred in September. The ICO and police were contacted as soon as we knew what had happened. Our clients were informed once it had been established any of their data may have been compromised.”
Reg readers complained to us about the long delay between the ransomware attack and being notified that their data was caught up in it. Some also alleged they had been told the attack took place in August.