Video surveillance solutions manufacturer Axis Communications has been working to recover from a cyberattack that was first discovered on their network.
Although company officials don’t believe that any sensitive customer or partner data was compromised, the attack, which was first reported by IPVM, has still wreaked havoc on many of the company’s services. As of Wednesday afternoon, Axis was reporting that its Camera Station video management, remote access and license systems tools were still experiencing a major outage along with device upgrades for the AXIS OS/apps within the Axis Device Manager software platform.
“As a preventative measure, [the IT team] completely disabled everything public facing – all internet service – in order to eliminate any potential damages from the attack,” Chris Shanelaris, the company’s spokesperson, told SecurityInfoWatch.com (SIW) when reached for comment on Wednesday. “Since then, they have been working to restore all of the affected services and things look good. It looks like they were able to curb things right at the beginning, so it looks like no data was compromised and we’ve just been gradually updating systems and keeping our partners aware.”
Shanelaris was not able to comment on the specifics of the attack, but he did confirm that there is no evidence to suggest that it was the result of a ransomware infection.
A statement from Axis stated:
On Feb. 20, our detection systems alerted us of a possible IT-related attack. Investigations began immediately and traces of illegal activity were found. As a preventative measure, we disabled public-facing Internet services in order to limit potential damage from the attack.
We’ve been working urgently to restore affected services and preserve the safety of our systems and data. Some systems have been restored and we expect continued improvement over the next few days. We are keeping our partners and customers aware of pertinent updates as available. Status updates can be found at status.axis.com
We have no information about this being a ransomware attack. And the attack appears to have been stopped early on. So far there are no signs that customer information has been affected but we continue to investigate.
