I'm sorry to hear about the issue your clients are experiencing. While I don't have data specific to whether other Webflow users have faced the exact same issue, I can provide some insight and advice on how to handle this situation.
1. Educate clients: It's essential to communicate with your clients about the issue and assure them that their websites have not been hacked. Explain that these types of emails are usually phishing attempts or scams, and the perpetrators are trying to instill fear and extort money.
2. Verify website integrity: Despite the scam emails, it's always a good idea to double-check the security and integrity of your clients' websites. Conduct a quick assessment of the website to ensure there are no vulnerabilities or malware present. Webflow typically provides a secure environment, but it's better to be safe than sorry.
3. Set up strong security measures: Make sure you have implemented necessary security measures on your client's websites. These measures can include using strong and unique passwords, enabling two-factor authentication, limiting login attempts, and regularly updating plugins and extensions.
4. Report the scam: Encourage your clients to report the scam emails to the appropriate authorities. They can inform the local authorities, as well as report the incident to the Cybercrime and Infrastructure Security Agency (CISA) in the United States or the relevant agencies in their respective countries.
5. Advise against paying ransom: Under no circumstances should your clients pay the ransom. Paying the ransom not only encourages the scammers but also provides no guarantee that the issue will be resolved. It's important to reassure your clients and guide them away from responding or engaging with the scammers.
6. Implement email security measures: Help your clients set up proper email security measures, such as using spam filters, enabling email authentication (SPF, DKIM, DMARC), and educating them about email scams and phishing techniques. This will minimize the chances of such emails reaching their inbox.
7. Stay informed: Stay up to date with the latest security recommendations and best practices in the industry. This will ensure you're equipped with the necessary knowledge to handle any security-related issues and protect your clients' websites effectively.
Remember, although these scam emails can be alarming, it's crucial to address them calmly and sensibly. By keeping your clients informed and implementing robust security measures, you can mitigate the risk and maintain their trust in your services.