LowEndBox - Cheap VPS, Hosting and Dedicated Server Deals

The Syniverse Hack: Why Using SMS for 2FA is a Bad Idea

Tags: , , , , , , , , Date/Time: October 5, 2021 @ 7:31 pm, by raindog308

Security gurus have suggested for years that relying on SMS for two-factor authentication is a bad idea.   Reasons include Your phone may be stolen Many people allow SMS messages to be displayed on lock screens Your phone can be SIM-cloned People inside your phone carrier may have access to your text messages But here’s a […]

Microsoft Azure’s CosmosDB Accidentally Left Wide Open

Tags: , , , Date/Time: August 27, 2021 @ 12:00 pm, by raindog308

Microsoft revealed Thursday that some customers’ CosmosDB databases in Azure were accidentally left wide open. A security researcher named Wiz discovered that it could access keys that unlocked thousands of customers’ databases. Microsoft has issued a fix and contacted affected customers so they can change their keys. “This is the worst cloud vulnerability you can […]

LowEnd Provider Clouvider Suffers Website Hack

Tags: , , , , Date/Time: August 26, 2021 @ 9:11 pm, by raindog308

LowEnd provider Clouvider suffered a website hack today. A group styling itself “Katyusha SecurityExploitCrew” defaced a website they manage, as reported on LowEndTalk. The site was a redirect to their main web site and no customer data was compromised. Clouvider posted the following statement: “At approximately 20:30 today (UK/London Time) we were made aware that […]

Australian Police Will Soon Have Sweeping New Surveillance Powers

Tags: , , , Date/Time: August 26, 2021 @ 12:00 pm, by raindog308

Australian law enforcement will soon be able to takeover accounts and impersonate their owners, “disrupt data” by modifying it.  Three new warrant powers are granted Australian Federal Police (AFP) and the Australian Criminal Intelligence Commission (ACIC) in the Surveillance Legislation Amendment (Identify and Disrupt) Bill which has been approved by both the Australian House and Senate. […]

CoinBase Customer Service Continues to be Appalling: Thousands Hacked

Tags: , , , , Date/Time: August 25, 2021 @ 12:00 am, by raindog308

A while back, I used CoinBase (NASDAQ: COIN) for some cryptocurrency transactions and found their system buggy and the customer service nonexistent. After failing repeatedly to get an account verified, I was actually told by one of their reps that perhaps I should just abandon my account and open a new account.  Nice. Apparently their […]

Comment Free For All: Hacking in the Movies

Tags: , , , Date/Time: July 28, 2021 @ 12:00 am, by raindog308

I once watched an episode of Law & Order with a friend who is an attorney. From the moment the action switched from the police to the prosecutors, he was tied up in knots, shouting at the screen all the inaccuracies in the way the courtroom proceedings were portrayed. I feel the same way about […]

Hosterlabs Confirms Data Breach

Tags: , , , , , , , Date/Time: June 23, 2021 @ 4:38 pm, by raindog308

Hosterlabs announced today that on June 21st they “experienced an intrusion” in which unidentified attackers “placed malware on our servers, and by doing so gained access to our customers’ data”. The vector used was apparently a WordPress vulnerability in their main site. The hackers attempted to extort Hosterlabs, threatening to expose the customer database if […]

No Support Linux Hosting Hacked, Shuts Down

Tags: , , , , , Date/Time: February 10, 2021 @ 12:03 am, by raindog308

No Support Linux Hosting announced today that they have been hacked and can no longer operate.  According to an announcement on their web site: No Support Linux Hosting is Shutting Down On February 8, 2021, a hacker successfully compromised all the servers we use to operate our business including the No Support Linux Hosting web […]