RSAWEB has informed clients it has “taken extreme measures” to deal with attacks on their websites.
It said it became aware that one of its client’s websites was hacked last week. Attackers defaced the site and removed its content. Two more sites followed.
The company said a brute-force attack on its systems was used, which means the attackers repeatedly tried passwords until they gained access to a user’s account.
“We regard this as our highest priority to address,” said RSAWEB.
It said it has secured all access to security-enablement services which, if compromised, would allow hackers to access websites.
“We have also blocked access to any public and other access ports which may be vulnerable,” said RSAWEB.
“Intensive monitoring has been initiated on all RSAWEB hosted web servers, looking for any abnormal activities, so as to catch any potential intrusions before they occur.”
RSAWEB said clients must change their passwords as a precautionary measure, and make backups of sensitive data.
“Please also make sure you have updated any plugins and themes on your websites.”
“We will continue to keep all our customers updated on developments and how best to mitigate the impact of these criminal and senseless activities.”