Howdy, Stranger!

It looks like you're new here. If you want to get involved, click one of these buttons!

Sign In Register

Quick Links


Shells Virtual Desktop
BMail.ag - Secure Email Service
Server.net
CPLicense.net
VPS Server
Buy VPN
Vultr
VMs for AI
HostDare
HostDare
ReliableSite White-Label Dedicated Hosting for Resellers
InterServer VPS
BMail.ag - Secure Email Service
Best VPN
High-Performance Bare Metal Server Solutions
Karvl.com
Server Mania Cloud Hosting
DataWagon Hosting
AlphaVPS Hosting
Evoxt.com
Clouvider
VPS Hosting with NVMe
Residential IPs in the US & 4G Mobile Proxies in EU & US with Unlimited Bandwidth
ReliableSite White-Label Dedicated Hosting for Resellers
Rabisu - Hosting Solutions
Shells Virtual Desktop

Categories

In this Discussion

Home Providers
New on LowEndTalk? Please Register and read our Community Rules.

All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.

PSA for Softaculous/Virtualizor users - Important Security Notification

2»

Comments

  • barbarosbarbaros Member

    Speaking of which can someone link the website about ColoCrossing breach? I can't find the link.

    Thanks

  • tarisutarisu Member, Host Rep

    @tentor said:

    @tarisu said:

    @zGato said:

    @tarisu said:
    We recieved the same mail, I don't understand why this kind of situation always happens with Softaculous products, a few months ago there was a problem with the server information shared on tawk.to. We try to take precautions on our side, but Softaculous software loses a lot of credibility in such cases. Lately we are very tired of this kind of situations and we are looking for alternatives.

    Virtfuuuuuuuuuusiooooooonnnnn

    @cybertech said:

    @tarisu said:
    We recieved the same mail, I don't understand why this kind of situation always happens with Softaculous products, a few months ago there was a problem with the server information shared on tawk.to. We try to take precautions on our side, but Softaculous software loses a lot of credibility in such cases. Lately we are very tired of this kind of situations and we are looking for alternatives.

    Virtfuuuuuuuuuuuuuuuuuuuuuuusion

    They don't have Wisecp integration as I know :/

    On a serious note I think it is not hard to develop an integration for Wisecp given that existing VirtFusion integrations are pretty simple

    Of course!

    But due to health problems we are not able to operate much on the Tarisu side at the moment. I don't know if you have noticed, but we are not as active on LET as before, we will return to the forum with solid campaigns when the situation improves.

    There is no problem with the company's operation, all our services are active and we provide immediate support in case of any problem.

  • MannDudeMannDude Patron Provider, Veteran

    Of course.

  • LeviLevi Member

    @Neoon said:

    @Levi said:

    @Rubben said:

    @Neoon said:

    @jbiloh said:

    @zGato said:

    @jbiloh said:
    I really hope Virtualizor cleans stuff up.

    When does ColoCrossing clean their security mess?

    I don't know, but I have the feelings that what happened to ColoCrossing is related to this, and thus, even if they're at fault for their poor security practices, you guys are also for not changing credentials you sent to random agents (or by just handing them out in the first place)

    This is pretty telling: https://www.virtualizor.com/blog/virtualizor-3-2-5-patch-1/

    Either way, what is done is done and hopefully Virtualizor has all the weaknesses cleaned up. Plenty of people in this industry, including the team at Virtualizor spend tremendous effort building things. So discouraging when bad apples try to destroy things (security weaknesses or not).

    Okay if you blame Virtualizor, why are you the only ones that got hacked?

    This got me thinking the same. Shouldn't have this been a much more widespread breach? Why only CC?

    Did you read explanation from virtualizor? They said that “breach” was due to publically available screenshots. There was passwords in them which was provided via live chat.

    Yes I did, if they did that, they handed over, access, to 11k VM's on a golden plate.
    They didn't even bother changing API or passwords afterwards....

    So technically it is human error, a.k.a. stupidity.

  • NeoonNeoon Community Contributor, Veteran

    @Levi said:

    @Neoon said:

    @Levi said:

    @Rubben said:

    @Neoon said:

    @jbiloh said:

    @zGato said:

    @jbiloh said:
    I really hope Virtualizor cleans stuff up.

    When does ColoCrossing clean their security mess?

    I don't know, but I have the feelings that what happened to ColoCrossing is related to this, and thus, even if they're at fault for their poor security practices, you guys are also for not changing credentials you sent to random agents (or by just handing them out in the first place)

    This is pretty telling: https://www.virtualizor.com/blog/virtualizor-3-2-5-patch-1/

    Either way, what is done is done and hopefully Virtualizor has all the weaknesses cleaned up. Plenty of people in this industry, including the team at Virtualizor spend tremendous effort building things. So discouraging when bad apples try to destroy things (security weaknesses or not).

    Okay if you blame Virtualizor, why are you the only ones that got hacked?

    This got me thinking the same. Shouldn't have this been a much more widespread breach? Why only CC?

    Did you read explanation from virtualizor? They said that “breach” was due to publically available screenshots. There was passwords in them which was provided via live chat.

    Yes I did, if they did that, they handed over, access, to 11k VM's on a golden plate.
    They didn't even bother changing API or passwords afterwards....

    So technically it is human error, a.k.a. stupidity.

    I would even go that far, to call it gross negligence.
    For me that's not stupidity anymore.

  • LeviLevi Member

    Usually malice intent is not the primary goal of human being. Sometimes “just fkin stupid” wins a reason. Non the less, it is unforgiving in professional env to make such mistakes. Data was lost, real damage was done.

  • TimboJonesTimboJones Member

    @Alyx said:
    This is odd
    Since they talk just about screenshots and nothing else, I assume it was not some rat or malware.

    So the whole making regular screenshots (of potential sensitive data) and then storing them somewhere was intentional?

    They malwared themselves to make sure Support wasn't slacking.

    This is the work of the dumbest manager who should be fired. Incompetence, not malice.

    Thanked by 2Alyx Voltrina
  • CloudHopperCloudHopper Member

    @Rubben said:

    @Neoon said:

    @jbiloh said:

    @zGato said:

    @jbiloh said:
    I really hope Virtualizor cleans stuff up.

    When does ColoCrossing clean their security mess?

    I don't know, but I have the feelings that what happened to ColoCrossing is related to this, and thus, even if they're at fault for their poor security practices, you guys are also for not changing credentials you sent to random agents (or by just handing them out in the first place)

    This is pretty telling: https://www.virtualizor.com/blog/virtualizor-3-2-5-patch-1/

    Either way, what is done is done and hopefully Virtualizor has all the weaknesses cleaned up. Plenty of people in this industry, including the team at Virtualizor spend tremendous effort building things. So discouraging when bad apples try to destroy things (security weaknesses or not).

    Okay if you blame Virtualizor, why are you the only ones that got hacked?

    This got me thinking the same. Shouldn't have this been a much more widespread breach? Why only CC?

    The Virtualizor email says:

    • API keys will include a recommendation to restrict access to specific IPs.

    So my guess is that's how ColoCrossing got breached. I'd even bet on it, but there's no point because they're never going to admit it so it's unprovable....but why else would that very specific line be included if it wasn't the breach vector?

  • EthernetServersEthernetServers Member, Patron Provider

    Another patch yesterday: https://www.virtualizor.com/blog/virtualizor-3-2-5-release-candidate-patch-2/

    1. [Task] Removed unnecessary files from the noVNC directory.

    Would be interesting to know what these files were...

  • AndreixAndreix Member, Host Rep

    @EthernetServers said:
    Another patch yesterday: https://www.virtualizor.com/blog/virtualizor-3-2-5-release-candidate-patch-2/

    1. [Task] Removed unnecessary files from the noVNC directory.

    Would be interesting to know what these files were...

    Probably just some shells left there by many previous hackers...

Sign In or Register to comment.