New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Comments
Virtualuzor or ... ?
I can’t login to the client area and both of my VPS are offline.
Their client area was designed by them if I remember correctly. I don't know what was the virtualisation.
I managed to access my VPS for backup and shutdown.
I can't login to client area though.
Luckily I just had WireGuard setup on them so nothing important.
I’m glad you were able to get in to backup your stuff!
Losing the data is something I can accept.
at worst, just start over from scratch.
**But I want to know: **
is there a risk of data leakage like what happened with Colocrossing last time?
Did the hackers gain access to customer data?Payment information?
I hope it doesn't happen; I hope it's just a false alarm.
What if they pay the 'premium protection fee'?
Maybe we should stop comparing this with ColoCrapping - that was their mistake (not some Virtualizor vulnerability as they assumed at the beginning and was never proven).
This is Cloudcone, a completely different provider, a completely different scenario.
That changes everything. Nothing can compete with bilohbucks cryptocurrency.
Sir you need to pay 100$ to cancel the service, else we renew it
And I dare to assume renewal is done for free automatically, until the victim pays $100 for cancellation. And even then, cancellation is processed at the end of renewal period.
Something is definitely up. I've got an account there but no product, their panel login form doesn't load properly. The in-house captcha doesn't load so can't proceed to login.
If anybody else can access their data, don't forget to make backups fast!
Isnt there a chance that server is infected already?
Could be. It is up to each system administrator to check if their data is not compromised or corrupted.
0xEf35250A9A2A763F87E406C2a9187A5a389c09AA
TWJr7y6cwF3t8hqVoGHvwYuGbP9AtJDVMw
UQBzr3lIN_8t9o4zN10M4cuD7OO2643GT-wFgia3EN-MSI39
you can see how much money is in hacker's account.
@MaxTakeba
I still can't understand why would anyone pay.
I don't even have $100 to spend on LET providers. Let alone some hacker who tries to extort people.
This was so obvious... don't have words.
Bolox is several threads below
Because they don't have any backup.
It doesn't matter whether it's reseller drama, datacenter caught on fire, deadpool, hostile takeover, ransomware. Follow 3-2-1 rule and avoid data loss
Note:
db replication, wal archiving is bothersome, but at least you could sleep well.
Zero backup == Zero worth
At least let's hope no private porn stash gets compromised from this hacking.
how you guys logging in? The captcha does not show up for me. website running ok otherwise
Totally agree, paying ransom to hackers will not help at all.
My brother, I can't log in to the client area using the CODE I entered. All VPS connections have been lost.
Their Reston Location seems not to be affected. Mine is fine, but LA one is not working.
Don't forget to backup
That $100 could have been spent on a solid back up solution for years to come.
I am so disappointed.
Time for your monthly reminder to ensure your back up process IS working.
I have lots of backups, thankfully. Question is, do I just move elsewhere now, or see if cloudcone pulls this off somehow.
Move to elsewhere.
As a former loyal customer of cloudcone, I have learnt it in hard way long ago when in a migration, my vps was offline for 3 months.
consider it as good as already breached. if multiple people are breached you may be too, you just aren't encrypted yet. take your files and databases (that hopefully had sensitive info hashed, salted and peppered) and move to another hoster.
if you run a service prompt all users to change their passwords once you migrate.
[maybe im paranoid but this is what id do]