Feeds

Code Spaces goes titsup FOREVER after attacker NUKES its Amazon-hosted data

Source-sharing site to close following total cloudpocalypse

Choosing a cloud hosting partner with confidence

Source code hosting provider Code Spaces has suffered the ultimate cloud nightmare, having been effectively forced out of business by the actions of an attacker who managed to gain access to its Amazon EC2 control panel.

The devastating incident began on June 17 when Code Spaces – a company that claimed to offer "Rock Solid, Secure and Affordable Svn Hosting, Git Hosting and Project Management" – became the target of a DDoS attack from an unknown party who demanded "a large fee" to make it stop.

This isn't the first such incident in recent weeks. Evernote and Feedly were each knocked down on June 10, reportedly by criminals trying to extort money. Both managed to restore their services, albeit only after extended outages.

The difference this time is that in addition to having access to a formidable botnet, Code Spaces' assailant had also gained access to the company's Amazon EC2 control panel, giving him control over the data it had stored using Amazon's Elastic Block Store (EBS) and S3 cloud services.

"We finally managed to get our panel access back but not before he had removed all EBS snapshots, S3 buckets, all AMI's, some EBS instances and several machine instances," the company wrote in a message posted to its homepage. "In summary, most of our data, backups, machine configurations and offsite backups were either partially or completely deleted."

The net effect was that, once the smoke cleared, Code Spaces no longer had any service to offer its customers.

"Code Spaces will not be able to operate beyond this point," the company's statement reads, "The cost of resolving this issue to date and the expected cost of refunding customers who have been left without the service they paid for will put Code Spaces in an irreversible position both financially and in terms of ongoing credibility."

The source-sharing site said it is now working to export whatever data remains so that customers can regain access to their files. All Git repositories and some svn repositories are reportedly available for export, although their backups and snapshots have been erased, and some svn repositories have been destroyed altogether. All of Code Spaces' EBS-hosted database files have also been wiped clean, along with their backups and snapshots.

The company said it is experiencing "massive demand" for support and has asked customers for patience as it struggles to get to everyone.

"On behalf of everyone at Code Spaces, please accept our sincere apologies for the inconvenience this has caused to you, and ask for your understanding during this time!" the statement reads. "We hope that one day we will be able to and reinstate the service and credibility that Code Spaces once had!" ®

Top 5 reasons to deploy VMware with Tegile

More from The Register

next story
The cloud that goes puff: Seagate Central home NAS woes
4TB of home storage is great, until you wake up to a dead device
Azure TITSUP caused by INFINITE LOOP
Fat fingered geo-block kept Aussies in the dark
You think the CLOUD's insecure? It's BETTER than UK.GOV's DATA CENTRES
We don't even know where some of them ARE – Maude
Intel offers ingenious piece of 10TB 3D NAND chippery
The race for next generation flash capacity now on
Want to STUFF Facebook with blatant ADVERTISING? Fine! But you must PAY
Pony up or push off, Zuck tells social marketeers
Oi, Europe! Tell US feds to GTFO of our servers, say Microsoft and pals
By writing a really angry letter about how it's harming our cloud business, ta
BOFH: WHERE did this 'fax-enabled' printer UPGRADE come from?
Don't worry about that cable, it's part of the config
prev story

Whitepapers

Why cloud backup?
Combining the latest advancements in disk-based backup with secure, integrated, cloud technologies offer organizations fast and assured recovery of their critical enterprise data.
A strategic approach to identity relationship management
ForgeRock commissioned Forrester to evaluate companies’ IAM practices and requirements when it comes to customer-facing scenarios versus employee-facing ones.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Managing SSL certificates with ease
The lack of operational efficiencies and compliance pitfalls associated with poor SSL certificate management, and how the right SSL certificate management tool can help.
Saudi Petroleum chooses Tegile storage solution
A storage solution that addresses company growth and performance for business-critical applications of caseware archive and search along with other key operational systems.