New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Comments
.
delete please
Hmmm, plot twist. If this is the basis of the cc hack, wouldn't cc loudly point it out? I admit I'm a little confused now, who can eli5?
And of course there is also the hotfix released by Virtualizor on May 28 resolving API and firewall security weaknesses.
For full context see
@jbiloh don't want to derail the other thread, so here's my original message:
I think most of us would still like a clear explanation on what happened and the steps that have been taking to prevent it from happening again in the future.
You guys really have an insanely big infrastructure and offer dirt cheap VPSs. You guys can do insane stuff at your scale, but still decide to throw it all into the garbage because of these stupid things. I'm really not trying to throw shit but giving my honest opinion. It's a bit more of work, but CC can improve by a lot because the hard stuff is already done. You literally own whole datacenters...
At your scale, you can offer stuff like unmetered bandwidth for absurd prices since it's basically pennies for you with such gigantic contracts you must have with Cogent, GTT, Telia, ... That's literally a main selling point most other providers can't easily beat.
Besides what really happened, the lack of communication and straight up lies in the emails is just a no no for me. Be upfront about it, don't try to use vague words. Or the community will do what they're best at.
Really, people in your team like @Ernie have been super nice to me and I have no plans into ditching ColoCrossing anytime soon.
By the way, in the "tasks" table, there's literally everything plaintext. Some providers I know of just prune that whole table from time to time (e.g. 24h). Take it as a recommendation, instead of blaming Virtualizor for their (obvious) bad security practice(s).
Or just ditch them in the first place.
Appreciate the feedback.
Lessons have been learned no doubt. A third party firm was brought in to review everything and changes have been made to improve security further within the platform. Obviously I am thankful for Virtualizor's assistance during the recovery and that they have released a hotfix plus more improvements coming.
It is true that ColoCloud is a very tiny part of ColoCrossing from a revenue perspective, but all customers are important. The team at ColoCloud and the overall enterprise always want to do right by the customers and provide a service worth buying.
I thought I'd seen/read this email about Virtualizor Live Chat being compromised before, but it seems the wording is slightly different this time, (although the subject/content is pretty much the same):
https://lowendtalk.com/discussion/202897/virtualizor-live-chat-compromised
If "all customers are important", shouldn't ColoCrossing be informing them that their personal data and passwords have leaked?
@jbiloh would CC offer SLA credits as per the website?
https://www.colocrossing.com/datacenters/critical-operations/
IMHO, it wouldn't fall under SLA because of force de majeure.
Considering almost everyone here provides some type of hosting services, I would imagine people would show some empathy and understanding. Absolutely no one wants to experience blackmail/extortion... especially when it's libelous and slanderous as well... I think a lot of people are just happy with the fact that CC team are working on stabilizing everything and making sure it doesn't happen again, and you really can't ask for anything more than that... You are responsible for backups, and you can easily migrate somewhere else if you aren't happy. But, for those that understand that some things really are out of our hands (if you have employees, etc. who also make decisions such as deciding on what vendors to use for billing, automatization, etc.) and all we can do is minimize the damage as much as possible... which was done to begin with (by shutting the nodes down physically).
We aren't PR experts so I don't see why the official response would matter as much.. after all, it's quite obvious that it was an attack. With or without a response, we are still left with the same situation... so a thorough post-mortem would certainly be helpful, but wouldn't change anything, people would still hate..
wut?
now that the cat is out of the bag i guess its time to reveal gaysex.host my new dmca ignor, bdsm allowed hosting service starting from $7/year
Are you guys really all providers begging for $7/yr deals? LOL
Majority of the people responding in this topic provide some type of hosting services.
Am I wrong?
What is every one doing when they need VNC access on a host that uses this Virtualizor junk?
This ColoCrossing blocked all VNC and now I can't fucking unlock my luks disk. Fuck
I am going to call it. I hereby kindly request for ColoCrossing to be banned from LET or at least have all its provider tag removed. The provider has failed to properly inform customers and publicly apologise with full transparency about the situation. This behaviour should have been banned from LowEndTalk, just like other providers have been banned in the past. Preferential treatment should not be granted - all providers should be equal on this community. It has been 1 week since this thread was started - plenty of time, while we're at page 32.
Tagging administrators and moderators of LET: @trewq / @jbiloh / @FAT32 / @hawc / @Jord / @netomx / @angstrom / @DP / @Arkas
Someone hit Mr > @default said:
Could not agree more.
They did notify customers and they did publicly apologize, so...
@dotdotnetworks could it be that you're using the emails from the CC breach to send spam?
Never registered in your page, and never got any email from you previous to this. Email matches the one I use with ColoCrossing.
I completely missed where they notified customers about their personal data being leaked (emails and full names, besides root passwords, vnc passwords, ...). Can you help me out with that?
Wow
Welll! Time to bring out the popcorn! its about to go down! @dotdotnetworks What do you say about this?
Yes, wtf @raindog308 they've not acknowledged the data running free in the wild at all and downplayed it in both(?) public comments. Are you even reading this thread? I understand if you haven't been, it's about 97% spam and bullshit, but I think you're mistaken.
Anyway, calling for a ban is funny and all but I don't think that's realistic. What should be required is proper acknowledgement of what actually happened and notifications to affected customers. I don't care about the apology part but I'm not a customer, they might care about that bit.
The email notification they sent does mention emails...?
But anyway, CC is capable of speaking for themselves. I was just pointing out that saying they hadn't informed customers or hadn't apologized at all is inaccurate. Any deficiencies in such notifications are a different story.
"The issue was identified on May 24th and stemmed from a vulnerability in a Single Sign-On (SSO) feature. While this did not impact the ColoCloud billing system (WHMCS) or expose any personal or payment information, the attacker was able to access limited system metadata, email addresses and used our mail server API to send an unauthorized message to ColoCloud customers."
Doesn't seem like they take email addresses as "personal" information...
either way, what about full names?
What I understand from your comment is: let's just say we got hacked. What got hacked? who knows. But we said we got hacked. And that's fine enough.
It is possible this would need its own thread, because I feel a smell of popcorn.
Meanwhile this thread is about ColoCrossing leaking info of many customers. impacting their services as well as other accounts of customers by leaking private information, all without any consequences on the provider tag.
Good luck wishing any action be taken...
It will happen when sun will rise in the west and set in the east.
Any time now.
Looking forward to their sweep everything under the rug low low prices upcoming sale!
You are always spot on for some reasons.