OuiHeberg Security Breach

Comments

• CloudHopper Member

  January 31

  @cu_olly said:

  @buzzyLET said:
  Is this the same thing that was happening in the recent Cloudcone etc attacks?

  Nobody actually knows. OuiHeberg ghosted both this thread and Virtualizor, so unless they decide to speak up, everything is pure speculation.

  Same thing with ColoCrossing. Their little whoopsie was largely covered up, and yet, they're still running Virtualizor in production for their VPS. Any information you see is again speculation, until/if ColoCrossing ever come clean. But one would like to think that ColoCrossing would have switched to a different panel by now had they found a vulnerability in the product.

  What we do know is that Softaculous (Virtualizor's parent) had a security incident in 2024/2025 after some screenshot‑grabbing software on support workstations got compromised. It’s highly likely - though still speculative - that the whole shebang traces back to that. Low end host = low end priorities, and frequent password cycling isn't top of the list.

  Until Virtualizor, Rack911, OuiHeberg, ColoCrossing or CloudCone release something concrete, nobody has a clue and we're all chatting theorisms.

  The CloudCone hacker has stated that they used a Virtualizor vulnerability and they've also claimed responsibility for the ColoCrossing hack, (amongst others).

  There's no concrete evidence, but people have been convicted and jailed for murder on weaker circumstancial evidence than there is for Virtualizor being the vector for all these hacks.
• cu_olly Member

  January 31

  @CloudHopper said: There's no concrete evidence

  Right. And I'm Donald Trump.

  Anybody can say anything. Doesn't make it true. Let's wait and see.
• CloudHopper Member

  January 31

  @cu_olly said:

  @CloudHopper said: There's no concrete evidence

  Right. And I'm Donald Trump.

  Anybody can say anything. Doesn't make it true. Let's wait and see.

  Donald, seriously, just go turn on Netflix and you'll see that people get jailed for murder without any concrete evidence all the time.

  When there's enough circumstantial evidence a jury convicts them, that simple, and on that basis Virtualizor are blatantly responsible for the current chaos.

  But the beautiful thing about LET is that people will refuse to believe what's obvious and they will argue black is white and up is down.

  And the best bit is, none of it matters because people are free to think and say whatever they want.
• advancemr Member

  March 21

  Login attempt to the API has failed. Please contact support for assistance

  and my box is down. anyone else or?
• Neoon Community Contributor, Veteran

  March 21

  @advancemr said:
  Login attempt to the API has failed. Please contact support for assistance

  and my box is down. anyone else or?

  That's just you, also wrong thread.
• advancemr Member

  March 23 edited March 23

  @Neoon said:

  @advancemr said:
  Login attempt to the API has failed. Please contact support for assistance

  and my box is down. anyone else or?

  That's just you, also wrong thread.

  Well, it wasn't actually just me, it was an outage in germany.

  So this comment is both utterly useless and wrong.