LET Hacked Again

[shovenose]

@Asama I think so.

 

[mnpeep]

Are LEB and LET sharing the same server?

Looks like it...

 

[WelltodoInformalCattle]

Well here we go again...

 

[Noerman]

The Real LowEndDrama

We are here again ....

 

[wdq]

If the same exploit has caused the hack three times now you think they'd figure out how to fix that exploit, or temporarily migrate to something other than Vanilla temporarily. 

 

[mnpeep]

If the same exploit has caused the hack three times now you think they'd figure out how to fix that exploit, or temporarily migrate to something other than Vanilla temporarily. 

I have a feeling like they are three separate exploits. The first two did not affect LEB.

 

[trewq]

The first two did not affect LEB.

 

They have taken the whole server offline by the look of it.

 

[Noerman]

It said we are all Admins ... but beaten by hacker(s).

 

[Dan]

Who knew a community around cheap VPS's could be so full of childish drama.. funny..

 

[drmike]

Bahhhahahahahah both sites are still down for me.  

 

[concerto49]

LEB is up.

 

[drmike]

Yep, Lowendbox is up... Back with a new offer Liquidhost (they host 2 of 3 locations with Colocrossing).

Lowendtalk is still down.  Now showing a Nginx screen. 403 error.

 

[Marc M.]

nCompetent people shouldn't be running no srevers... nor fRums.... iF you catch my dRift....

 

[Dillybob]

So whatever happened to EndOfReality? Secretly just poofed? I call bs

 

[Naruto]

If the same exploit has caused the hack three times now you think they'd figure out how to fix that exploit, or temporarily migrate to something other than Vanilla temporarily. 

You know how slow those Solus guys are at patching things.

 

[Daniel]

@Asama I think so.

They are on the same dedicated server, but they are in separate containers.

 

[drmike]

So whatever happened to EndOfReality? Secretly just poofed? I call bs

EndofReality... 

Colocrossing won't say what happened.  They claim something legal related ongoing.

Saw a bid for EndofRelity that was floating around in search engines.   Weird deal with CC where CC was swapping out servers they were paying for and consolidating. So in essence reducing the servers.  Then on the back side, throwing EOR a pile of very old servers.   So they were basically giving them newer machines, but fewer in number then additionally giving them this incentive with the much older and smaller servers.

Very strange.  Invoice was something like $6k+ a month.  At that time EOR was overdue on invoices several months.

Unsure if what happened was just that further down the line or what.

Lots of people thought EOR was a front company...  Doesn't appear it was though.

 

[dnom]

You know how slow those Solus guys are at patching things.

Are you Naruto from LET? Sorry for the LET-style derailment.

 

[AnthonySmith]

Getting silly now, the problem is if someone has a private unpublished exploit or has found a hole then they will struggle to patch it, they obviously dont have much experience with these things as the fix pattern is obvious.

Hack 1) must have been vanilla, update vanilla and restore from backup

Hack 2) must have left a back door on first hack, reinstall all of LET and restore from backup

Hack 3) must have found an entry point via LEB reinstall everything.

Which probably means if hack 4 happens they will be all out of ideas, I don't really want to see the place die it's just business now after all any community spirit was ripped out by chief.

 

[Naruto]

Are you Naruto from LET? Sorry for the LET-style derailment.

Yes. The one that was banned for basically saying what everyone now knows from the recent hacks. I wasn't the only one though.