I just thought some of you used HyperVM / Kloxo for your VPS nodes or VPS.
They've been having security problems the last few weeks. But as of today, the only valid and 100% safe measure that can be taken by us is to stop HyperVM/Kloxo completely:
service lxadmin stop (if you're on a VPS)
service hypervm stop (if you're the node owner)
That shouldn't affect other clients - though you will need to perform your clients' reboots & reload manually.
Even the latest version can be compromised. I've seen one of my VPS being compromised some minutes ago (HyperVM & Kloxo were updated this morning). I just took it down.
Almost the entire a2b2 network was hacked some hours ago (as seen in WHT). FsckVPS and some other providers part of their network saw their full /vz dirs wiped.
Why I'm posting this here? If you have any averagely-popular website and you're using Kloxo on its box, chances are you've already been hacked.
Best of luck.
They've been having security problems the last few weeks. But as of today, the only valid and 100% safe measure that can be taken by us is to stop HyperVM/Kloxo completely:
service lxadmin stop (if you're on a VPS)
service hypervm stop (if you're the node owner)
That shouldn't affect other clients - though you will need to perform your clients' reboots & reload manually.
Even the latest version can be compromised. I've seen one of my VPS being compromised some minutes ago (HyperVM & Kloxo were updated this morning). I just took it down.
Almost the entire a2b2 network was hacked some hours ago (as seen in WHT). FsckVPS and some other providers part of their network saw their full /vz dirs wiped.
Why I'm posting this here? If you have any averagely-popular website and you're using Kloxo on its box, chances are you've already been hacked.
Best of luck.