New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
ColoCrossing - Poll for Provider Tag
Following the breach at ColoCrossing which happened more than a month ago, with the following major issues:
- there was no publicly acknowledged bug in Virtualizor as they stated;
- there was no email message sent to inform customers and take responsibility for their lack of security;
- the impact for customers was in exposing their sensitive information (name, email addresses, root/admin passwords);
- ransomware was sent to customers by hackers from ColoCrossing official email accounts;
- hackers accessed servers and data of customers, yet customers were not informed in advanced about the passwords being leaked;
- there was failure to protect the sensitive data (like passwords) using encryption - an aspect which is a standard in any industry nowadays.
There is also a dedicated website with more information on this
To all this, not even an official public apology was sent to their own precious customers. For this reason alone I kindly open a poll for members here to vote on the removal of provider tag. Maybe it is just be, but I can't just stand by and watch how data gets leaked, without public apologies and without consequences.
Provider Tag Removal
- Should ColoCrossing Provider Tag be REMOVED?286 votes
- YES83.57%
- NO16.43%
Comments
I will click no because obviously it would not
"Never write when you can speak. Never speak when you can nod. Never nod when you can blink."
It is your vote and it is appreciated whatever it is. This is the power of democracy.
Sorry I don't believe in fairy tales
I do.
We are the fairy tale. You are the beautiful miracle which happened, therefore your vote and your opinion matter precisely because your are unique. Your choices define who you are.
who is counting the votes? ha ha
Democracy
The forum shows the results publicly after you vote. It is how this platform works. The individual votes though are secret.
Never blink when you can remain silent.
Me.
I counted 39 votes in total.
At least 13 of them are either falsified or fake.
tentor publicly admitted to voting 'no' so I accept his vote was real
MOARRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRR
$3
Well although they apologized I'm gonna say:
Did you just assume it's rigged?
And nothing will change...
But maybe some frustrations can be relieved.
(I didn't even vote)
Doesn't the US have something similar to GDPR? If it does, why not report ColoCrossing?
suspend their tag until they do a full and transparent post mortem
I am sure - It will be taken care off on Monday.
Do people actually think LET is some independent non-affiliated entity?
Nothing will be changed. It's sad because I quite like my CC dedis and was excited to get more. I hope they know how much brand damage they caused themselves by not acknowledging the breach fully. Definitely a huge loss of trust on my end.
It is on a state-by-state level, but yes, some states do require formal notification both to the customer and sometimes to the state attorney general. This would typically be based on where the customer resides, not the company.
There is also a private right of action in some states. So, for instance, it may be possible that a customer in California may be able to bring a civil action for failure to properly notify.
Source: https://perkinscoie.com/insights/publication/security-breach-notification-chart
why should any providers tag be removed? it should be removed only for fraud and not delivering services. for others, let the people decide with their money whether they should do business with them. imposing business ethics is nothing less than censorship.
It actually is. @jbiloh bought it from Deluxe (2020ish I think) and personally owns it, alone, separate, by himself, etc.
This has been discussed to death.
Note the specific inclusion of the phrasing "non-affiliated" and then check @jbiloh's LinkedIn page which quite clearly states his affiliation with the provider in the OP, as you are well aware.
I mean, he's playing word games.
LET is Biloh's personal property so yes LET itself isn't affiliated with CC. But CC was Biloh's baby and he still works for the people he sold CC to, so imagine him interfering with CC sales here at LET, lol.
Didn't we know all this?
So it is actually a independent non-affiliated entity.
It was once owned by CC, as you may recall, so the fact that it's not now is a significant change from those days. But people are going to see whatever they want.
As someone who well remembers the CC days, I can tell you the present experience is quite different.
(History: LETAdmin (founder lost to the mists of time) -> @Chief -> CC -> Deluxe -> @jbiloh )
I believe WNY IT Services, Inc. (the company that owns LEB/LET) also holds the lease on the Buffalo data center and sub-leases it to HostPapa. Maybe I'm wrong, but I think that was posted at one point?
Wouldn't a landlord have a vested interest in the success of the tenant?
If so, how can you say that is an independent non-affiliated entity?
Logic doesn't apply here.
LeT is independent non-affiliated entity