Hosted Exchange Security Incident
Learn more and get answers to your frequently asked questions.
To our valued customers,
As you are aware, on December 2, 2022, Rackspace experienced a ransomware incident affecting the Hosted Exchange email environment. Since then, our dedicated Rackers have been working hard to get customers back on email, restore their data, and bring this incident to a close. To our customers, I’d first like to sincerely thank you for your support and cooperation during the course of the incident.
As you may know, on January 5, 2023 we announced that we completed our forensic investigation and we shared information broadly about the root cause – a previously unknown security exploit – as well as more detail about the full scope of the incident. We did this because in cybersecurity, a rising tide lifts all boats. Sharing intelligence about our own incident will help our customers and others in the security community better defend against emerging threats in the future.
Our intention has always been to be transparent and forthcoming with this information, even down to the scope and impact of the attack. While the forensic investigation was ongoing, we shared as much as we could. This communication included Indicators of Compromise and other details about the incident. However, we did not want to get ahead of ourselves by speculating around data impact or other factors that often can change as a forensic investigation progresses. Our credibility and the trust we have built with our customers are very important to us, and we wanted to be diligent and precise every time we released information.
Now that the forensic investigation has concluded, you can find further detail about the scope of the December 2022 incident and the findings of the forensic investigation on the “Latest Update” tab. Under both the “Latest Update” and “Resources for Customers” tabs, you can also find additional materials that will be helpful to you if you still need assistance with restoring your historical data.
I want to close by saying that while the Hosted Exchange email environment was a small part of our business, it represents thousands of long-time and loyal customers. We deeply value each and every one of you. We sincerely thank all of our customers and will continue to work to maintain the relationships we have built with you over the years. Again, we apologize for the disruption that this incident caused and look forward to working with you in the future.
Amar Maletira, CEO, Rackspace Technology
Resources for Customers
Our technical team Rackers are working diligently to recover mailboxes for our Hosted Exchange email environment customers. In order to expedite the process of your mailbox recovery, customers can now select the “Prioritize Recovery” option available in the customer portal. To begin the process of selecting a mailbox for priority recovery, please log into your Hosted Exchange customer portal and click on the ‘mailboxes’ tab.
Selecting the "Prioritize Recovery" button will prioritize the recovery of the given mailbox ahead of non-prioritized mailboxes on your domain. Mailbox recovery does not require prioritization but help us know which mailboxes are highest priority for you to have recovered.
Please ensure your contact information is up to date, so Rackspace can contact you when your mailbox is ready for download. Please also continue to check the portal daily for any updates.
To address some commonly asked questions regarding the Microsoft 365 migration process, a video tutorial that explains how to complete the transition is available.Watch Video
Additional Resources for Common Customer Issues:
- - Data Recovery Resources
- - Setting up your Microsoft 365 account
- - Connecting Your Archives (Using Rackspace Control Panel)
- - Setting up Outlook (desktop and mobile)
- - Creating your DNS Records
- - Editing DNS in Rackspace Cloud Office Portal (including MX Records)
- - Editing DNS in Microsoft 365 (including MX Records)
We are here to help.
If you have questions or need assistance, please reach out to us.