Rackspace Confirms Play Ransomware Gang Responsible for Recent Breach

06-Jan-23

The ransomware gang known as Play was in charge of last month’s attack, cloud services company Rackspace said on Thursday. To acquire initial access to the Rackspace Hosted Exchange email system, the security event, which happened on December 2, 2022, used a previously unidentified security exploit.

The Texas-based organisation stated that “this zero-day exploit is related to CVE-2022-41080.” Microsoft released CVE-2022-41080 as a privilege escalation vulnerability but did not mention that it was a link in an exploitable chain for remote code execution.

Read More…