Beware of Hackers 2nd or 3rd turn.

Again some so called hackers in the whmcssec group (maybe same as before titled admin) shared a list with proper names of potentional victims. The price is set on $5000.

frantech.ca
greenwebpage
speedykvm

Some sorts of germans too and many others, but never kown of them.

Thanked by (2)host_c IAmNix

Comments

  • FatGrizzlyFatGrizzly Hosting Provider

    @ascicode said:
    Again some so called hackers in the whmcssec group (maybe same as before titled admin) shared a list with proper names of potentional victims. The price is set on $5000.

    frantech.ca
    greenwebpage
    speedykvm

    Some sorts of germans too and many others, but never kown of them.

    @Francisco has claimed no proof nor any breach.

    Hoax.

  • NeoonNeoon OGSenpai

    Probably fake or they didn't fix the security issue properly.
    So what is it?

  • FatGrizzlyFatGrizzly Hosting Provider

    @Neoon said:
    Probably fake or they didn't fix the security issue properly.
    So what is it?

    first one definitely.

    I will leak at least five targets such as iorange.io, getspace.eu, hostitbro.com, etc.

    If he really hacked down Frantech and such big ones, wouldn't he be leaking partial ones of big ones?

  • Anybody get a HACKED ticket response from HostMaze in the last week/10 days or so? I did. Wish I had taken a screenshot of it b/c it doesn't exist now except for my email re:ticket response.

    [Ticket ID: xxxxxxxx] HostMaze was hacked!
    Subject: HostMaze was hacked!
    Priority: High
    Status: Open

    Essentially said HM refused to pay a $1000 Bitcoin ransom (really, hacknerds? Isn't Monero more anonymous? OPSEC!) so all their servers were at risk of being deleted. And as a special deal, they offered my server to NOT be deleted for a special one-time only $100 Bitcoin payment.
    So of course I

    DID NOT pay it.

    What are u gonna do? Come into my home machine, delete the backups of something running one process, and leave me with a fresh install to restore?

    Thank you?

    The ticket response after HM (I guess) looked into went to "Undergoing Maintenance" and now goes to "Something went wrong/we can't find that."
    Both my servers there experienced zero issues after I got the hacked notice from the hacknerds.

    Privacy is a human right.

  • edited March 31

    @FatGrizzly said:

    @Neoon said:
    Probably fake or they didn't fix the security issue properly.
    So what is it?

    first one definitely.

    I will leak at least five targets such as iorange.io, getspace.eu, hostitbro.com, etc.

    If he really hacked down Frantech and such big ones, wouldn't he be leaking partial ones of big ones?

    Expecting as a list that turned around before by the previous guy (the group owner) that got shared and never used, because the issues where patched. The most sites never patched anyway, so mostly will collect them to deadpool, if one of them was ever active in the past year.

  • edited March 31

    Full list of "new" allegedly breached hosts that was shared in their Telegram channel:

    1ahost.com
    4kiptvuk.com
    4kmediauk.com
    4kmediauk.live
    4kspeedmediauk.com
    4kstreamuk.com
    abmediauk.com
    abuhatim.biz
    acc.uhost.co.id
    account.lamsa.tech
    account.lighthost.io
    account.oderint.org
    account.olxnet.com
    account.qoxy.com
    account.rar-it.com
    account.tetherhost.com
    account.webimpress.in
    account.webverge.io
    accounts.armelin.media
    accounts.practicalhost.com
    aceserversuk.com
    admin.jaroslavkovac.sk
    admin.wasabiweb.se
    admin.zonaclient.ro
    afinititv.com
    afrowebhosting.com
    agus-server.com
    alphatvuk.com
    altelcahosting.com
    amplica.shop
    andytvhd.com
    anyhk.net
    app.hostenya.com
    app.letgoose.com
    app.nivuscloud.com
    app.plataformadepagamentos.com
    app.truolikes.com
    appzky.net
    areaclienti.limenetwork.it
    areadocliente.brazucacloud.com.br
    areadocliente.multimidiabrazil.com.br
    atmohost.com
    atnasshost.com
    autoconfig.gokagny.com
    b4hosting.com
    barrytvuk.com
    basecliente.com
    baskethost.com
    bezzco.com
    bill.serve.com.ua
    billing.10xservers.com
    billing.ajjnetpr.com
    billing.bighostindia.in
    billing.billigerhost.com
    billing.create.com
    billing.dottyhost.com
    billing.epro.io
    billing.gabehost.com
    billing.glutechid.com
    billing.hostlink.gr
    billing.lylahost.co
    billing.miffedhosting.com
    billing.mmgnservices.com
    billing.mmomekong.com
    billing.pediahost.com
    billing.revivenode.com
    billing.tv4k.me
    billing.vpsfuze.com
    billing.winheberg.fr
    billingi.chmuradlazdrowia.pl
    billingi.chmuradlazdrowia.pl.pl
    bingotvuk.com
    bitdedicated.com
    bitecage.com
    bittivirta.cloud
    blackwhirl.com
    blueberrywcs.com
    bm.bluemediaeg.com
    boaovm.com
    branzone.com
    bravotvuk.com
    bridge.bigcore.net
    bridge.hosting-pilot.com
    britishmediauk.com
    browserdaily.com
    business.telelig.net
    central.bhostbrasil.com.br
    central.cloudrun.com.br
    central.hospedainfo.com
    central.mibbs.com.br
    central.nuvemz.com.br
    central.truesecurity.com.br
    chemicloud.com
    cindercloud.com
    cl.keloncloud.com
    client.5brahost.com
    client.afterdarknetwork.ro
    client.ariatech.online
    client.bison.tn
    client.businesshosting.pk
    client.carmahost.com
    client.counthost.com
    client.dcnet.vn
    client.dolphinudesign.com
    client.fifty5bytes.com
    client.gohost.mk
    client.habana.hu
    client.hexaserver.cloud
    client.highhost.org
    client.hosting.kg
    client.hostingoven.com
    client.hostpro.pk
    client.hosturo.com
    client.innovahosting.net
    client.itpiran.net
    client.mozo.dk
    client.nuohost.uk
    client.pinkmare.cloud
    client.purecloudserver.com
    client.quickserrvice.com
    client.serfstack.com
    client.servers.com.sa
    client.siamcolo.net
    client.tarahan.com
    client.tranokala.pro
    client.unicorncross.me
    client.virtualine.net
    client.vpsforex.in.th
    clientarea.coast2coastwebhost.com
    clientarea.locknet.eu
    clientarea.spellhosting.com
    clientarea.valtonetgroup.co.za
    cliente.betsown.com
    cliente.cloudo.com.br
    cliente.cyberwebhost.com.br
    cliente.dghost.com.br
    cliente.flamehost.com.br
    cliente.logoscomunicacao.com
    cliente.pedidu.com.br
    cliente.sb4host.com.br
    clientes.boliviahost.com
    clientes.clickstudio.cl
    clientes.cloudwin.com.br
    clientes.deltahost.cloud
    clientes.espacioveloz.com
    clientes.explorahost.com
    clientes.fredetech.com
    clientes.hosting-profesional.com
    clientes.intermediahost.co
    clientes.kusudamadigital.com
    clientes.ltmsoluciones.com
    clientes.moshipp.com
    clientes.tuvitrinavirtual.com
    clienti.hathost.it
    clienti.ilmiohosting.it
    clientportal.oogleplop.com
    clients.123colo.com
    clients.afaghhosting.net
    clients.ajihost.com
    clients.arionlk.com
    clients.collectif-hub.ca
    clients.daichi.host
    clients.egyservers.com
    clients.geekspen.com
    clients.heberplanet.net
    clients.hostavio.com
    clients.hostclouda.com
    clients.hostingsmm.com
    clients.hwhost.fr
    clients.inallweb.com
    clients.kairoscale.com
    clients.platinumhost.io
    clients.s1r.com
    clients.stratagem.host
    clients.streamradio.fr
    clients.vernalweb.com
    clients.vexis.io
    clients.virtualcollab.co.za
    clients.watchme242.com
    clients.webage.net
    clients.xmahosting.com
    cloud.gradax.com
    cloud.maniaccreativo.com
    cloud.myqo.com
    cloud.shohost.com
    cloudcovehosting.com
    cloudenty.com
    cloudhosting.kuasar.net
    cloudrome.net
    clounex.com
    cloustack.com
    cmsystems.biz
    colovix.com
    consola.truobox.com
    console.cloudcoreconnect.com
    console.cloudservers.lk
    console.floio.net
    console.myasiacloud.com
    console.niihost.com
    control.bangla.biz
    control.firstveda.com
    control.rocket.net
    control.sermonbox.site
    cp.flamehoster.com
    cp.hihost24.com
    cp.itpolly.com
    cp.mykart.biz
    cp.uifast.co
    crm.ravisteam.com
    crm.totoweb.ir
    customers.giddyhost.com
    cutterhost.com
    dandyuk.live
    dash.indianserverhosting.com
    dashboard.oxteal.com
    dashboard.viewen.com
    datacenter.glink.net.br
    datamaxhosting.com
    dawnmediauk.com
    dearserver.com
    dediroom.com
    dhlhost.com
    digirdp.com
    directvision.uk
    divinehost.net
    dlcvps.com
    dndmedia.uk
    dolphn.host
    domain.mn
    dunkerhosting.nl
    easyhostingdomain.com
    edge.pixify.co.uk
    ekiphost.com
    en.fastycloud.com
    ent22.uk
    enterprisevpssolutions.com
    eucloudhost.com
    excellhd.uk
    exclusive-identity.com
    fa3t.shop
    fabmediauk.com
    falconmediauk.com
    fastyun.cc
    fexhost.com
    financeiro-tucanoweb.com.br
    financeiro.bancodaweb.com
    financeiro.meuhub.com.br
    financeiro.quantumhost.io
    financeiro.wyzehost.com.br
    firemediauk.com
    fitboxhd.com
    fiteco.fi
    flixbox.uk
    flosmic.com
    flymediauk.com
    foxmediauk.com
    frantech.ca
    frogden.glowfroghosting.com
    galaxycloud.io
    galaxyiptvuk.com
    geeklab.host
    globalhosting.ba
    globalmediauk.com
    gokagny.com
    goldenrdp.com
    goldmediauk.com
    golobalhosting.com
    goodserverbd.com
    gosofthost.com
    gpdhost.com
    grape-hosting.com
    greenwebpage.com
    gscomms.cc
    hacktive.me
    hoganhost.com.ng
    hollandwebhost.com
    holomediauk.com
    homemediauk.com
    host.4esport.com
    host.aicloud.ae
    host.cloudinos.com
    host.net.vn
    hostalika.com
    hostbeak.com
    hostcamp.eu
    hosterhouse.com
    hosthightech.com
    hostimpact.com
    hostina.io
    hosting.babel-solutions.com
    hosting.blusimba.com
    hosting.crimsonred.org
    hosting.qualiteyserver.com
    hosting.regiumitsolutions.com
    hosting.tomedia.com.au
    hosting.wyohost.com
    hostinghub.in
    hostingkuy.com
    hostingmaa.com
    hostinow.com
    hostlint.pk
    hostlive.co.uk
    hostmax.uk
    hostmeup.re-load.fr
    hostnev.com
    hosturly.com
    hostwem.com
    hostzworld.com
    hub.vedina.ir
    hubvps.com
    id.azhost.vn
    id.bkns.vn
    id.cloudface.vn
    id.evps.vn
    id.inode.vn
    id.mga.vn
    id.onet.com.vn
    id.onte.agency
    id.sandclock.vn
    id.shost.vn
    id.vinahi.com
    id.website3mien.com
    idcloudhost.com
    imitaservers.com
    infinitymediauk.com
    insation.io
    ionlineuae.com
    iorange.io
    ipanel.indstartup.in
    ipay.herijmatrix.com
    iptvserviceuk.com
    itmnetworks.com
    ja1000cloud.com.br
    khachhang.tdvietnam.vn
    kingsmediauk.com
    klant.woltersdesign.nl
    kunden.internetworx.de
    kunden.rackspeed.de
    lagoa.digital
    lala.gg
    layerstack.com
    lepetithebergeur.com
    liber.plus
    lightvps.net
    lindzuri.host
    linkless.net
    livetimeuk.com
    loan.teamnitro.shop
    local.channelislandhosting.net
    login.rentalpanel.io
    login.softloop.cloud
    login.tcvisionbd.com
    loja.zyiptv.com.br
    majestictvuk.com
    mamahost.co.mz
    manage.bigwetfish.hosting
    manage.buildingbridge.com
    manage.bytenap.com
    manage.cloudminister.com
    manage.fablehost.com
    manage.hostf.it
    manage.indibiz.com
    manage.nelixhost.com
    manage.serverclub.digital
    manage.shohost.com
    manager.arzhost.com
    manager.dyhost.fr
    manager.gaprod.host
    manager.vpsroom.com
    marjamsolutions.com
    market.hisabcloud.net
    market.news-serv.fr
    marshmallowhd.com
    marvishost.com
    masspas.com
    maxcotv.com
    maxmediauk.com
    maxtvuk.com
    mbsmedia.store
    mdg-it.com.au
    mediabyte.info
    mediagiantsuk.com
    medialanduk.com
    medialineuk.com
    medianetworkuk.com
    mediastormuk.com
    mediastreamsuk.com
    mediastrikeuk.com
    mediavikingsuk.com
    member.cloudnow.co.id
    member.prodigitalagency.com
    member.rfnet.id
    member.sulissoft.com
    member.zerucenter.com
    members.crashcourse.site
    micuenta.adaptixnetworks.com
    micuenta.adaptixnetworks.es
    micuenta.ideesolution.net
    mid-southernentertainment.com
    mijn.gohost.nl
    mijnzavia.nl
    milesweb.com
    minthost.app
    moncompte.kenotronix.com
    mtv4k.com
    musteri.nodesty.com
    mutexx.com
    my.101gen.com
    my.abrisham.cloud
    my.aclue.ch
    my.alderity.com
    my.alvandnetwork.com
    my.amtechost.com
    my.anewzon.com
    my.aryanaserver.com
    my.asporeahosting.com
    my.aysarhosting.com
    my.blogeasy.co
    my.blueflowermedia.com
    my.bnix.one
    my.buyucloud.com
    my.buyuhost.com
    my.bytesis.com
    my.caribe.host
    my.ciscohost.com
    my.cloudku.id
    my.crtlhost.com
    my.designthat.cloud
    my.dewabiz.com
    my.digitv.biz
    my.directfa.com
    my.dncloud.net
    my.doitmisr.com
    my.dsites.pk
    my.egcloudhost.com
    my.exoras.com.tr
    my.fantasyhost.com.bd
    my.fhbilisim.com
    my.fhidc.com
    my.frilix.com
    my.frontcp.com
    my.gamehost.bg
    my.gitcloud.co.uk
    my.grafixhost.com
    my.grow2host.com
    my.hostaja.com
    my.hostchain.com
    my.hostcrafter.com
    my.hosthaunt.net
    my.hostingdady.com
    my.hostingpas.com
    my.hostingvnz.com
    my.hostingvps.net
    my.hostiria.com
    my.hostnin.com
    my.hostsazan.com
    my.hosttechno.com
    my.hostyd.org
    my.hostzeek.com
    my.idnix.net
    my.ihost.al
    my.innovahost.net
    my.ipmen.io
    my.iranspeed.net
    my.irhosting24.com
    my.itmizban.com
    my.ivahost.com
    my.jeohosting.com
    my.jetstax.com
    my.jwdev.co.id
    my.kampalahost.com
    my.kavir-host.ir
    my.kendi.net.tr
    my.kloudia.co
    my.ksweb.net
    my.laluvirtual.com
    my.levohost.com
    my.livestep.com
    my.minhduy.vn
    my.mizbansam.com
    my.mustqr.com
    my.nekomedia.vn
    my.netaram.com
    my.netbazz.net
    my.newbloghosting.com
    my.nexushost.io
    my.noc.pe
    my.novatis.agency
    my.novincloud.com
    my.nytrohost.com
    my.opanhost.com
    my.paneltion.com
    my.parswebhost.net
    my.pbxaas.io
    my.quichost.com
    my.radib.com
    my.ragaddenge.com
    my.sbmhosting.com
    my.serverfee.com
    my.serverhub.com
    my.servmix.com
    my.spamexperts.id
    my.sparrowhost.in
    my.tasnim.co
    my.telfire.ir
    my.toberhost.com
    my.ucanhost.com
    my.urlbd.com
    my.v2nethost.com
    my.wamplo.com
    my.webishow.com
    my.websupport.md
    my.webzi.mx
    my.wesitely.com.bd
    my.xweb.co.id
    my.yesstreaming.com
    my.zerohost.ro
    my.zonaclient.ro
    myaccount.nestwebhost.com
    myanmarwebserve.com
    myaussiehosting.com.au
    myaussiehosting.vaerith.net.au
    mycentury21.app
    mycloud.itgmhost.com
    myonline.co.nz
    mysite.technolot.in
    myturbohost.com
    myunaxus.com
    namvps.info
    nanobyte.host
    netflix520.com
    netpoa.com
    nextcli.com
    nexustvuk.com
    nitro-cloud.com
    nivelvahost.com
    nk1.gg
    nkrnet.com
    noc.boxintense.com
    novainternet.co.uk
    oasishosting.net
    oben.tech
    oblyk.ws
    odis.tv
    old.62dns.com
    onedc.net
    onesystems.it
    onet.vn
    online.mhosting.hu
    optv.uk
    orders.data443.com
    ovm.net
    ownyour.name
    painel.arthostbrasil.com.br
    painel.bishopsites.com.br
    painel.hostingnow.com.br
    painel.softcode.co.mz
    painel.webfluence.com.br
    panel.almenasa-ar.com
    panel.areocloud.com
    panel.arsait.net
    panel.bhoost.com
    panel.fibersunucu.com.tr
    panel.gauravgo.com
    panel.geeks.com.py
    panel.hadaf.host
    panel.hostingowo.pl
    panel.kdhost.net
    panel.navegacloud.com
    panel.nubepal.com
    panel.rackone.it
    panel.servermax.net
    panel.sg-bilisim.com
    panel.sorsell.io
    panel.webizy.cl
    pay.usdc.vn
    phpcarry.com
    platinumtvuk.com
    popularmediauk.com
    port.moonport.top
    portal.7cloudserver.com
    portal.auscloudhosting.com.au
    portal.binero.com
    portal.cloudonhost.com
    portal.hooman.agency
    portal.hostixia.com
    portal.hostnext.net
    portal.jetdino.com
    portal.khanshosting.com
    portal.kiwi-hosting.de
    portal.motionhost.com.bd
    portal.mspincloud.com
    portal.nettask.de
    portal.newsys.in
    portal.nsai.eu
    portal.overnetwork.cloud
    portal.ptn.digital
    portal.rasanegar.com
    portal.ravihost.com
    portal.servermart.net
    portal.serverpoet.com
    portal.siglo.host
    portal.spotlightstudios.co.uk
    portal.techtronics.com
    portal.teslahost.org
    portal.vibraniumdata.com
    portal.vpsngon.com
    portals.cloudku.id
    potacloud.com
    premiummedia.live
    prosystech.xyz
    pstvprime.com
    pulse.sa
    qiqi.cat
    qtmediauk.com
    rangouk.com
    rapidaehost.com
    readymediauk.com
    redhawkmedia.uk
    reg.eu
    reweb.agency
    robot.goplextv.xyz
    rohu.co.uk
    royalmediauk.com
    ruffnet.hu
    rummage.cloud
    ryzen.art
    s-destek.com
    sac.onnhost.com
    safeguardstreaming.ca
    savorhosting.com
    schroeder-hosting.info
    scopmedia.com
    seasidc.com
    secure.apikhost.com
    secure.fxsvps.com
    secure.gate.com
    secure.hosthab.com
    secure.istheweb.com
    secure.mycheaphoster.com
    secure.plusplushosting.net
    secure.premiervpn.net
    semecloud.com
    server.pitget.com
    server.rockcloud.net
    serverspice.com
    servheberge.eu
    service-centre.pushlogic.co.uk
    service.azadweb.com
    servicios.cloudcify.com
    shootermediauk.com
    shop.cobravpn.co.uk
    shop.cracksmart.com
    shop.fbmediavpn.co.uk
    shop.hosturly.com
    shop.mybigservers.com
    shop.qdtv.info
    simbaott.com
    simplehost.one
    sitemanage.vip
    skmediauk.com
    skshd.uk
    skyvillage.vip
    smartsiptvuk.com
    sonicmediauk.com
    spaceweb.cloud
    speedcloudz.com
    speedmediapro.com
    speedykvm.com
    spillhosting.no
    sportstimeuk.com
    sprybyte.com
    ssdcloud.us
    ssexpressit.com
    ssldun.vip
    sso.bengalcloud.net
    starmediauk.live
    store.instaweb.ae
    store.smartdigit.pt
    store.zephyrr.net
    store.zoomihost.com
    stuxhost.com
    support.cayan.co
    support.ezvps.vn
    support.hvips.com
    support.ibtdi.com
    support.sophio.com
    supportboard
    swiftmediauk.com
    tanmedia.org
    tcgclouding.tcteamcorp.com
    tco.com.tr
    techbio.me
    terminalhosting.de
    thangvps.com
    thumbsupmediauk.com
    titanode.com.au
    tk-hosting.com
    tntcloud.io
    topmediauk.com
    tridents.io
    trishakcreationsdigital.co.uk
    ttpsvpn.com
    tvtimeuk.com
    tyhosting.com
    ukmedias.com
    ultra.vapourhost.com
    unbxd.host
    universalmedia.uk
    v6market.com
    vef.web-design.is
    virtual.mn
    vpsmalaysia.com.my
    vpsrv.com
    vwatch.live
    vylehost.com
    watchtimeuk.com
    web.dewahoster.co.id
    webhosting.uk.com
    webjuice.it
    webonize.net
    webpd.net
    webprovise.com
    westernit.apikhost.com
    whlayer.com
    whmcs-modules.com
    whmcs.getrealistic.com
    whmcs.guru
    whmcs.rade023.com
    whmcs.yellowpages.net
    wimpytv.com
    wpfond.com
    www.365hosts.com
    www.afrinnovators.com
    www.bigpigeon.net
    www.bytahost.com
    www.calmahub.store
    www.datasini.ch
    www.extreme.co.tz
    www.host.flyonlineltd.com
    www.hostmsu.ru
    www.jokko.cloud
    www.kvion.com
    www.mediasolutionsusa.net
    www.minithost.com
    www.portal.kdhost.in
    www.renkas.net
    www.smartersiptv.net
    www.vitalweb.io
    www.webhostinglayer.com
    www.xaccel-codec.com
    xdmb.xyz
    xololive.com
    xplanetiptv.com
    xpp.cool
    xtibox.com
    xtreamediauk.com
    xtreamtv.uk
    yys.hk
    zapohost.com
    zeeshtv.com
    zeropanda.pro
    zesha.tz
    zeusservers.net
    zonaclient.ro
    
    Thanked by (2)wankel host_c
  • Not_OlesNot_Oles Hosting ProviderContent Writer

    @ascicode said: hackers in the whmcssec group (maybe same as before titled admin) shared a list

    May I please ask where is the "whmcssec group"? Are you talking about Discord, Telegram, something else? Thanks!

    @FatGrizzly said: @Francisco has claimed no proof nor any breach.

    HI FG! Link please? Thanks!

    I hope everyone gets the servers they want!

  • @Not_Oles said:

    @ascicode said: hackers in the whmcssec group (maybe same as before titled admin) shared a list

    May I please ask where is the "whmcssec group"? Are you talking about Discord, Telegram, something else? Thanks!

    Its on telegram

    Thanked by (1)Not_Oles
  • edited March 31

    @Not_Oles said: May I please ask where is the "whmcssec group"? Are you talking about Discord, Telegram, something else? Thanks!

    edit:
    Retracted comment, I don't have time nor will to deal with bullshit that may follow.

    Thanked by (1)Not_Oles
  • @treesmokah said: remember, I had no ill intentions.

    That would be the first time, then. You're as malicious as it gets.

    Thanked by (1)IAmNix
  • edited March 31

    @Helga said:

    @treesmokah said: remember, I had no ill intentions.

    That would be the first time, then. You're as malicious as it gets.

    Thanks, whoever you are and I'm very sorry I made you upset at some point.

    Edit: I have retracted my previous comment, hopefully it makes you feel a little bit better about yourself.

  • @treesmokah said: Full list (..)

    Quite the list! :-(

  • edited March 31

    I would take this quite seriously if I were a customer at one of the providers in the list, and ask the company how they are dealing with this.

    Remember - the risk isn't that your server will go down, the risk is that all the personal information you gave the provider gets sold to blackhats.

    @Lantern1368 said:
    Anybody get a HACKED ticket response from HostMaze in the last week/10 days or so? I did. Wish I had taken a screenshot of it b/c it doesn't exist now except for my email re:ticket response.

    In the telegram chat, they have already posted a database dump of hostmaze on 25 March. So them sending a ticket from there does not prove that they have access to the 765 hosts in their new list.

    Thanked by (1)Lantern1368
  • @treesmokah said:
    Full list of "new" allegedly breached hosts that was shared in their Telegram channel:

    The next time someone asks "Should I start a server rental/VPS company?" - I'm going to present this list and show that these are just providers that have been hacked in one go. Knew the market was saturated but hot damn.

  • host_chost_c Hosting Provider

    That is a fxing long list :o

    Host-C - VPS Services Provider - AS211462

    "If there is no struggle there is no progress"

  • FatGrizzlyFatGrizzly Hosting Provider

    @Not_Oles said:

    @ascicode said: hackers in the whmcssec group (maybe same as before titled admin) shared a list

    May I please ask where is the "whmcssec group"? Are you talking about Discord, Telegram, something else? Thanks!

    @FatGrizzly said: @Francisco has claimed no proof nor any breach.

    HI FG! Link please? Thanks!

    Conversation happened in private.

    I'm not willing to link screenshots in public forums, but I can tell you that Fran did check his WHMCS installation for any infection and found nothing.

    Thanked by (2)Not_Oles host_c
  • FatGrizzlyFatGrizzly Hosting Provider
    edited April 1

    fyi,

    Most hosts on that list are either, running nulled editions of X plugin and didn't apply security patch

    or

    It's a Hoax.

    my best guess is he's trying to make the money back, the one he used to buy the channel?

    Thanked by (2)Not_Oles host_c
  • edited April 1

    @FatGrizzly said:

    @Not_Oles said:

    @ascicode said: hackers in the whmcssec group (maybe same as before titled admin) shared a list

    May I please ask where is the "whmcssec group"? Are you talking about Discord, Telegram, something else? Thanks!

    @FatGrizzly said: @Francisco has claimed no proof nor any breach.

    HI FG! Link please? Thanks!

    Conversation happened in private.

    I'm not willing to link screenshots in public forums, but I can tell you that Fran did check his WHMCS installation for any infection and found nothing.

    If they have been pwned, there won't necessarily be any obvious traces left behind. It sounds like the attacker has an exploit that they've used to privilege escalate to get a database dump. That's a one-off attack - they don't need to leave any backdoors behind to get back in. Hit and run.

    It's almost impossible to prove an attack like that hasn't happened, without a very thorough investigation.

    It's relatively easy for the attacker to prove they have the database though, by providing a sample :). Even a customer might be able to convince them to show a sample, if they think it might lead to a payout for them.

Sign In or Register to comment.