Webhost hack wipes out data for 100,000 sites

[subigo]

HyperVM was warned over two weeks ago about these security issues, yet they did nothing. Now it looks like a lot of hosts are will be working overtime this week.

If any of you use HyperVM, I suggest you disable it asap.

Webhost hack wipes out data for 100,000 sites ? The Register

VAServ Status

 

[subigo]

....and the owner of HyperVM just killed himself.

Techie hangs himself in HSR Layout - Bangalore - Cities - The Times of India

wtf.

 

[Bofu2U]

....and the owner of HyperVM just killed himself.

Techie hangs himself in HSR Layout - Bangalore - Cities - The Times of India

wtf.

Those fucking people. Now we have one less virtualization system owner out there! GAH!

 

[subigo]

And it turns out the big hack wasn't even because of HyperVM:

Web Hosting Talk - The largest, most influential web hosting community on the Internet - View Single Post - fsckvps - Clients and Staff only please

(that post will probably be deleted soon)

 

[turbolapp]

Hey Subigo- Now's a good time to point out how zensix is different. And particular measures you take to prevent somethng like this from happening with your hosting. Maybe bullet points in the articles (ie encrypted data...whatever) I realized it would have been in poor taste to start the thread with these intentions, but now I, as a zensix client, would really like to know.

EDIT: Jeez that article about him hanging himself was depressing as hell.

 

[HBZSoftware.com]

When I read the name "Rus Foster" I had to go back and read it over to make sure I wasn't tripping. I used to know that guy. He was a total fag. I'm amazed he built up a web hosting company to 100,000 websites... he was completely incompetent, at least when I knew him.

 

[subigo]

Hey Subigo- Now's a good time to point out how zensix is different. And particular measures you take to prevent somethng like this from happening with your hosting. Maybe bullet points in the articles (ie encrypted data...whatever) I realized it would have been in poor taste to start the thread with these intentions, but now I, as a zensix client, would really like to know.

EDIT: Jeez that article about him hanging himself was depressing as hell.

Sure thing...

First, we don't offer VPS plans, so the HyperVM (which is control panel for a VPS) exploit doesn't really matter. And even if we were offering them right now, I would have shut down HyperVM two weeks ago when these exploits were released, but there was no patch.

Then there's credit card information. The company the article is about also had all of their client's credit card information stolen. That's one of the reasons we only accept PayPal and 2checkout. Because we use third party processors, we never have your credit card information. In fact, I couldn't get it if I wanted it.

The only kind of personal information we have on you is your address/phone number. This is stored in the WHMCS (the software that runs the billing/client area) database. We check with WHMCS every 24 hours to see if any major bugs have been found.

As for the actual server's security, DimeNOC handles the cPanel servers and I handle the DirectAdmin servers (with the exception of DA1). They are scanned every 24 hours for suspicious files and the logs are also reviewed. We also keep them locked down tight, disable a lot of functions that can be used against us and don't allow SSH access. So, the servers are pretty tight.

With that said, no server is 100% secure, there will always be someone out there who can hack in, given enough time and drive.

Oh, and backups. We take weekly backups (cPanel backups are to another server in the same datacenter and DirectAdmin backups are offsite). However, we always suggest making your own backups. Look what happened to VAserv.com, they had backups, but the hacker deleted them and they lost over 50% of all their data... and they have hundreds of servers.