New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Comments
eWVh.dmVy.eWZ1.bm55/4269subnet give lease possibelVirtualizor issued a minor update ("patch 1") yesterday -- the first update since the incident at CC -- but based on my reading of the (unspectacular) details given, it's far from clear that this update was motivated by the incident at CC:
https://www.virtualizor.com/blog/virtualizor-3-2-5-patch-1/
Which increasingly suggests that the incident at CC was largely due to a human error at CC
(But perhaps Virtualizor haven't revealed something important)
[Feature] Server Firewall is now added in Premium License to improve server security.what an interesting and innovative feature to add in 2025!
https://www.virtualizor.com/blog/virtualizor-3-2-5/
Just an interesting fix
Outages and security incidents can and do happen, but the lack of transparency from CC is alarming and reflects super poorly on them.
Right, but just to note that that fix (for version 3.2.5) predates the incident at CC
However, hacker claimed that they had two month of access prior leak. Don't get me wrong but without clear statements from CC or Virtualizor (or both) we can only speculate
I admit that I didn't follow the hacker's precise statements (and there's also a question whether we should believe everything that the hacker says)
In any case, this doesn't seem to be an instance of a critical bug in Virtualizor alone
Hello everyone,
I wanted to provide an update regarding ColoCloud.
As of May 25th, 2025, ColoCloud has been fully operational. While a small group of customers did experience data loss, we have maintained consistent communication with those affected through our support ticket system. During the incident, we refrained from sharing specifics in real time to prioritize data integrity and give our team the best opportunity to complete mitigation efforts without introducing additional risk.
We’re pleased to see that Virtualizor has included additional security enhancements in their most recent patch released yesterday.
If you are a customer and have further questions or need assistance, please don’t hesitate to reach out via a support ticket. Our team is here to help. For escalation matters, your welcome to send me a private message.
Thank you for your patience and understanding.
The ship of red flags has sailed long ago.
So that's it? We are back and things goes to normal ? How about the breach explanation ? Someone there could have provided real info which now is stolen and can be used in various ways... Probably for your companies data leak is not serious, you only care about uptime.. WoW
Any other company would have been long banned from LET for such a tonedeaf address of a major security breach that fucked over a lot of your customers.
What is the difference between colocloud and colocrossing?
Would therefore imply unless that database is made public, nobody affected will be aware.
To clarify: over five thousand ColoCrossing customer's details including their email addresses, phone numbers, full names and some addresses were leaked. Some VPS IP addresses and passwords were also leaked.
Wow. This is really the statement from ColoCrossing? Seriously???
You've spilt private customer data, you lost access to your services, people's VPSs were compromised and you haven't addressed any of that at all....or even any steps you e taken to ensure your infrastructure hasn't been backdoored
I'm not your customer, but if I was Id be reporting you to the Irish Data Protection authority for a serious breach of GDPR.
I think at this point it's better to push https://colocrossingbreach.com/ higher up on the google results so people can get more detailed about what actually happened.
These aren't the droids you're looking for. Move along.
forwarding the responsibility to a non-existent brand so "cockcrossing" stays clean and this never happened to them
Does this need to be shopped around more to industry related and adjacent publications so these guys are forced to do standard disclosures about the breach?
I need SEO experts @allthemtings @plumberg
If you have 11k servers and 500 get wiped.
Its 5% so a small amount, true story.
Send 22k btc first
Someone shared this on Reddit:
https://www.reddit.com/r/VPS/comments/1kudww5/comment/muvtqnc/
Passwords in plain text.
@CVPS_Chris @ColoCrossing
Do you think your customers should know that their passwords have been compromised and might be used to access other services?
Does seem like they're avoiding responsibility if I am being honest, especially with 0 clear communication besides those cryptic "Thanks for your patience" messages that do not address any of the issues raised.
So when is colocrossing getting banned/warned? They cannot be allowed to continue with business as usual on LET after such a cock up
I'm sure there will be a hit squad in the comments of any future offer thread they post, but not everyone reads that, especially with the LET signal to noise ratio at new lows