WHMCSServices(WHMCS的第三方模块开发商)网站被入侵,其开发的模块中被上传了恶意代码,导致有部分使用WHMCSServices模块的主机商的隐私内容被泄露,黑客声称自己是“安全团队”,并向主机商索要200美元才不会公开数据库内容。
目前已知受影响的主机商有cloudie.sh(非cloudie.hk)、smarthost、letbox(smarthost子公司)、quickhost.uk。
或许还有更多受影响的主机商还未公开损失情况,如果有以上主机商的客户,建议尽快修改服务器、控制面板和财务面板的密码。
AdvinServers老板首先于2023/12/17发帖提醒WHMCSServices被黑公告:https://lowendtalk.com/discussion/191174/whmcsservices-whmcs-module-provider-hacked
Cloudie.sh和quickhost.uk发布公告提醒:
① https://my.cloudie.sh/index.php?rp=/announcements/4/URGENT-SecurityorPayment-Invalidation-Notice-Action-Required.html
② https://status.quickhost.uk/incident/411384
LET和LES相关讨论:
① https://lowendtalk.com/discussion/191535/psa-cloudie-networks-breached
② https://lowendspirit.com/discussion/7088/cloudie-networks-llc-data-leakage
目前已知受影响的主机商有cloudie.sh(非cloudie.hk)、smarthost、letbox(smarthost子公司)、quickhost.uk。
或许还有更多受影响的主机商还未公开损失情况,如果有以上主机商的客户,建议尽快修改服务器、控制面板和财务面板的密码。
AdvinServers老板首先于2023/12/17发帖提醒WHMCSServices被黑公告:https://lowendtalk.com/discussion/191174/whmcsservices-whmcs-module-provider-hacked
Cloudie.sh和quickhost.uk发布公告提醒:
① https://my.cloudie.sh/index.php?rp=/announcements/4/URGENT-SecurityorPayment-Invalidation-Notice-Action-Required.html
② https://status.quickhost.uk/incident/411384
LET和LES相关讨论:
① https://lowendtalk.com/discussion/191535/psa-cloudie-networks-breached
② https://lowendspirit.com/discussion/7088/cloudie-networks-llc-data-leakage