Cyber Incident Victim: Stratus Technologies

On March 17, 2021, Stratus Technologies, a manufacturer of high-availability computing systems designed for critical infrastructure sectors, experienced a ransomware attack that disrupted its operations. The company detected suspicious activity indicative of ransomware and initiated immediate containment measures by taking affected systems offline to prevent further propagation across its network. This response included the proactive shutdown of the Stratus ActiveService Network (ASN) and the Stratus Service Portal, both integral components of its customer support infrastructure. Stratus formally disclosed the incident on March 22, 2021, confirming the ransomware event and emphasizing its adherence to business continuity protocols. The company specializes in fault-tolerant servers and edge computing devices that guarantee 99.999% uptime for clients in banking, telecommunications, emergency services, and healthcare—sectors where prolonged system outages could have severe operational and safety repercussions.

The disruption of the ASN platform represented a significant operational impact, as this proprietary service enables Stratus engineers to continuously monitor customer hardware through secure channels, perform predictive maintenance, and automatically dispatch replacement components to prevent failures. By isolating this system, Stratus temporarily suspended remote monitoring capabilities and automated part replacement workflows, potentially increasing downtime risks for clients reliant on uninterrupted service. The company initiated direct communications with all ASN customers to provide alternative support channels during the outage. No details regarding data exfiltration, ransom demands, or the specific ransomware variant were disclosed publicly. The incident underscored the operational challenges faced by providers of mission-critical infrastructure when balancing containment actions against service availability commitments during cybersecurity events.