New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Comments
the dedicated servers are a completely different portal, those normally run under portal.colocrossing.com whereas the VPS products are under cloud.colocrossing.com
Admin opened the Trojan email
With SPF alone it could still be spoofed (especially as they use
~alland not-all) (https://community.spiceworks.com/t/anyone-else-noticing-sendgrid-allowing-bad-actors-to-spoof-their-domain/947728, https://www.reddit.com/r/sysadmin/comments/144avo4/sendgrid_phishing_emails/), but it's also passing DKIM:Though from the second link:
But given that they seem to have access to the email addresses of all/most CC customers, I think this might be real. Let's see...
hackers hate this one way of besting them!
I'm also not entirely sure about this, but this email is not in the WHMCS email history, so could be a breach of their sendgrid shit and that's it.
please share them here before they post your leaked data
outsmart the hackers 😎
For the time being, I've moved the thread from News to Offtopic
Yes, we need independent confirmation that there have been "system breaches"
It almost looks like a disgruntled employee on the way out who sent this email
There's still a breach of the customer's emails DB, that's forsure.
Confirmed, the email is not spoofed; their backend has been exposed. I just had a chat with the hacker.
The hacker provided proof that matches my panel records, and they have Virtualizor permissions. (provided a screenshot of my VPS)
Reminder: reinstall the system and cleanup all your secret
@jbiloh pls confirm or deny
thanx
did he give you any deals?
But who are you? Trust me bro.
I gave him a deal for a few BTC, although I don't have BTC, tbh
yeah boys, virtualizor is compromised LOL
just got a screenshot too, the dude didn't even bother to blur the stuff, what a goat
it possibel giv us sneak peak?
don't want to get in trouble
just ask the guy on telegram, he doesn't care
You don't have to trust me; I don't mind your secret on the internet.
Or you can just ask the hacker for proof using your VPS ID, which I have done.
is possibel we get news topic back already? what a whirlwind of a 5 minute period its been
So the hacker got in touch with you for a chat, or you got in touch with the hacker for a chat?
I got in touch with the hacker
Offtopic? Typical LET
not quite news worthy enough yet sir sorry i've got a problem with blowing my load too early
Received this too to coloncrossing@mydomain so it’s at least a mailing list breach
I’m also a relatively new customer (single digit months) so it’s fresh
Not even a customer, my point was your confirmation isn't confirming anything, help us out here.
@beanman109 unexpected card on your 2025 bingo?
same as @zGato , dont want to get into trouble
Has colo crossing always used sendgrid? I remember getting a strange email in Feb, but the headers pointed to zoho instead.
Thanks I will try to arrange a hitman from DarkNet to cleanup any loose ends.
sue them
@wadhah look dis important news
@emgh suck my willy