New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
GreenValueHost hacked, data stolen
This discussion has been closed.
Comments
@AnthonySmith sorry if you don't know, better not know.
I'm presuming it means that I hold items improperly.
The only things that are KNOWN at this time - I have personally seen the webserver access log:
As to who created the dump its unknown.
agreed.
No, we have children who pretend to be mothers, huge difference.
oh, no... although not a customer of them anymore but information still leaked...
I literally snorted Sprite through my nose when I read that.
Your disgusting.
Welcome to England! Jk.
My disgusting what?
Are people completely ignoring this post, or ... ?
We also know that the dump was created and then downloaded in under 1 minute and that the rDNS on the IP is sephton.us, so far Jack has not denied that is his server and only 2 downloads were made 1 of them was jon.
We are expected then to believe that in just 60 seconds or less, an sql dump was created, jon found out about the breach, jon contacted Jack, jack logged in to the WHMCS back end and located the sql dump.
little bit of a stretch?
Did Jon maybe move the dump he found to public HTML to download/check? Then it was grabbed after the discussion?
Seeing as this topic is about stolen data I just wanted to say that last month I contacted 4-5 hosting companies that I no longer had service with asking if my account and personal information could be deleted.
@SkylarM - Crissic Solutions was the only one who did this for me. I was able to edit information myself in one service account. The others did not allow editing and refused to delete my account and stated they keep it indefinitely for accounting/billing reasons.
There's a dozen or so VPS companies on this site that have my private information. I will be contacting GVH and will be asking for a year of credit monitoring paid by them. I plan to contact my local attorney general's office and will forward my complaint to GVHs local office as well. I'm not sure if anything will come of it but it's time my private information is taken seriously and secured properly.
in under 60 seconds?
He found the dump and moved less than 60 seconds AFTER it was created?
I hope Jack did not do it I really honestly do, I hope someone comes up with something that proves this to be complete bollocks and it was hacked last week.
But for the circumstances right now and for the dbdump then attempted deletion of the server I just dont believe all of this is pure coincidence in less than 60 seconds.
There was a long thread about this and the plain facts are that providers have no responsibility to do this. They have many reasons why they may want to keep info on who they've done business with on file.
On the flip side, though, they have a duty to protect that info, so GVH may very well be liable for the exposure.
>
I have yet to see anyone back this claim of action up with any evidence of doing so, please be the exception.
Was just a suggestion. I have no idea. Not sure if the 60 seconds is confirmed. Lost track. Are GVH back on track with restoring backups etc?
Hmm, site is availble. Anyone know something more?
Slowly working to restore from backups.
Good of you to assist.
I agree that the chances of it being created and downloaded within a minute are damning. No question
But in terms of actual evidence, we only know he downloaded.
The problem is that lfd kicked off some alerts but no-one knows where they would go. /etc was removed off the server so no-way to find out and so on....
Okay. I'm waiting on my vps move to Chicago A staff was supposed to make it minutes before hack.
You're seriously keeping your VPS?
Got it for free.
Then have the decency to at least wait until they've got everything recovered before you pester them to move something they gave you out of their own pocket.
'Come for the free VPS, stay for the personal information leaks!'
Hmm
Won't be free now your personal data from their database is leaked on the www
OK