Hosterlabs announced today that on June 21st they “experienced an intrusion” in which unidentified attackers “placed malware on our servers, and by doing so gained access to our customers’ data”. The vector used was apparently a WordPress vulnerability in their main site.
The hackers attempted to extort Hosterlabs, threatening to expose the customer database if payment was not made, but management declined to pay and restored from backups. They have since remediated the vulnerability and amped up security.
“We have added further firewalls, active monitoring and we are working as of now with law enforcement to track the perpetrators of the crime,” they said in their announcement. “We have notified the FBI and we expect to do forensics on our servers, for which we have backed up all logs and accesses.”
You can read the full announcement on LowEndTalk.
Hosterlabs has shared some unique offers on LowEndBox, with a strong focus on green hosting and sustainable practices. It’s unfortunate they were targeted in this attack and we hope they recover quickly.
Related Posts:
I also enjoy using LEBs! I have an empire of little guys for VPNs, larger guys for apps, and big guys for databases and storage. When I'm not in front a screen I'm into German Shepherd dogs, quality knives, target shooting, theology, tabletop roleplaying games, and forest hiking.
I enjoy writing technical articles here on LowEndBox to help people get more out of their systems. You can find me on LowEndTalk @raindog308
- Setup a Highly Available WordPress Site From Scratch, 2024 Edition!Part 6: MariaDB Multi-Master - April 16, 2024
- Setup a Highly Available WordPress Site From Scratch, 2024 Edition!Part 5: WordPress Install - April 15, 2024
- Setup a Highly Available WordPress Site From Scratch, 2024 Edition!Part 4: Gluster - April 14, 2024
Leave a Reply