There is no easy way to contact these people are a third party.
Cleaning up in the wake of a breach is never a cheap undertaking unless you try to hide it and that can end up costing you even more. There was a recent study by Symantec that estimated the average cost to a business of a data breach at [$188 x (number of records compromised)] which is probably why many insurers now offer data breach response insurance to help cover the cost of notifications, forensics, possible lawsuits, etc (example: The Hartford).
images.google.com
Let us not fight... Where is the SQL password stored? Anyone know?
I just loved this quote
From my understanding the file was a backup of the entire whmcs directory which included the configuration.php file you are looking for. GVH was supposedly using a cluster of frontend servers that talk to a central mysql server so someone could have infact dumped the database if they were quick enough since the IP and pass would be in the configuration.php.
... for WHMCS? That's one of the more ridiculous things I've heard this year, and anyone that actually believed such a claim should be ashamed of themselves.
Why is that? WHMCS has a license configuration specifically for this type of setup so I'm sure others are doing it, not saying that GVH has this setup but I'm wondering if your response is towards WHMCS supporting that kind of setup or GVH's ability to set something like that up?
A few possible reasons why the idea of GVH using a WHMCS cluster is ridiculous:
The final chapter: they'll be "absorbed" by the demigods
Little from column A, a lot from column B. Keep in mind this is a kid that was constantly begging for help behind the scenes - to the point of allowing a prepubescent child to perform work on live production gear clients were dependant on. How many times have we seen him make claims, just to be immediately slapped for trying to use buzzwords on technology he didn't understand? So - no, I see GVH (and all persons involved) simply not having the knowledge and skill to set up something at that level.
His latest WHT VPS offering last week. To be fair, the ad says "over 4000" and in a few recent WHT posts he has bragged about "4500 customers", but still very small and nowhere near the level of activity that would require a cluster or a dozen or so directors/Vice Presidents and Level 3 techs with 100+ years combined experience.
Ditto. Let's put that into perspective: back when we were still around the 10k mark (that's clients with active service, not just a grand total of registered accounts), there were three of us putting in comfortable hours. Francisco and myself doing dev, and Anthony and myself doing support. A company as small as his could easily be run solo, with an extra body or two only necessary for 24 hour support.
So configuration.php is in there and populated with data.
To be fair we automate anything we can that comes up more than a couple times a week.
Well, the million dollar question is, is the SQL IP public or private? If they have a private LAN then it's fine. If it's public IP's that's rough.
Well, the customer portal inevitably was under attack on daily basis.
Problem is if something really breaks and when it breaks. Need fresh folks who can conquer the issue and with fresh eyes. It's doable with small staff, but has to be like you guys with workers who know their stuff and admin who is very competent and with lots of automation and where head admin - this is his life and not a hobby.