| Posted by imadmin, 04-01-2009, 10:50 AM | | Just visited their site to order some hosting
but it seems to have been hacked
|
| Posted by UH-Bobby, 04-01-2009, 11:07 AM | | Yep, looks like a defacement. It looks like their own account is suspended, and the suspended page has that hacked message.
|
| Posted by HJI Technologies LLC, 04-01-2009, 11:18 AM | | This is what it said on their website:
|
| Posted by DigitalLinx, 04-01-2009, 11:28 AM | | April fool's probably.
|
| Posted by HJI Technologies LLC, 04-01-2009, 11:38 AM | | That was my first thought.. but then again, in a serious business like hosting, who could afford to lose clients or even do this kind of stuff.
|
| Posted by imadmin, 04-01-2009, 11:43 AM | | So True
|
| Posted by IGXHost, 04-01-2009, 11:52 AM | | Highly doubt it. Who would deface their own business like that?
|
| Posted by KMyers, 04-01-2009, 12:04 PM | | Actually look at the browser URL
http://astram.anmoltech.com/suspended.page/
|
| Posted by webtown, 04-01-2009, 03:20 PM | | This is the last thing that I want to see in any hosting companies website!!!
|
| Posted by UNIXy, 04-01-2009, 04:32 PM | | The question is what SSH vulnerability got exploited.
Regards
|
| Posted by dotRoot, 04-01-2009, 05:55 PM | | I'm sure it wasn't an SSH exploit. Probably an exploit in a script, disgruntled ex-employee or a just plain bad password somewhere.
|
| Posted by StartYourServer, 04-01-2009, 06:27 PM | | That is just the normal suspension page.
|
| Posted by imadmin, 04-01-2009, 07:13 PM | | could be a few things
xss
rfi
lfi
to name a few
|
| Posted by StartYourServer, 04-01-2009, 08:02 PM | | I highly doubt this had anything to do with April Fool's Day. You can joke around about a serious business.
|
| Posted by KMyers, 04-02-2009, 03:31 AM | | Well whatever it was, it appears everything was restored. If it was a prank, it was not a wise one
|
| Posted by StartYourServer, 04-02-2009, 08:34 PM | | Has anyone gotten a response from them about what actually happened and if it was a joke?
|
| Posted by KMyers, 04-03-2009, 02:35 AM | | I am wondering too
|
| Posted by StartYourServer, 04-03-2009, 10:34 PM | | I guess it wasn't
|
| Posted by tuxadmin, 04-05-2009, 08:24 PM | | dont think too this is April fool , they would loose lots of reputation and potential customers , on the other hand what is 2009 the hacking year or what ?!
|
| Posted by StartYourServer, 04-05-2009, 10:09 PM | | That is what I was thinking! All the hosting companies and major websites seem to be getting hacked!
|
| Posted by DoYouSpeakWak??, 04-06-2009, 11:35 AM | | We got hacked a few weeks back. All 1400 users on the server. took 10 mins to fix. but it seems alot of hosts are having problems.
|
| Posted by KMyers, 04-06-2009, 11:53 AM | | This has been going on for a while. Before I became my own host, I have hosted with several other hosts. All of which had security issues.
1) Yahoo Web Hosting - The server side scripting functions are not hardened. Even though they do not offer SSH Access, tou can easily gain SSH Access under the "yroot" account. All scripts seem to run with the same permissions. I Left after finding this out and confirming.
2) Dreamhost - ANYONE can have SSH Access (Not even Jailed). There are several "Tutorials" out there that tell you how to compromise a Site hosted at DreamHost.
3) HostMonster - I logged into my account one day only to find a ton of strange folders located in my home directory. There were BNC Scripts, IRC Scripts and a script to attempt to copy all of my "config" files.
|
|
 Add to Favourites
 Print this Article
|
