DomainBop
Dormant VPSB Pathogen
Today's drama starts with linuxthefish asking on the LET GVH/XFuse thread: "Did anyone else get an email from Nexim web hosting to the email account they used on GVH SolusVM?"
Nexim Web Hosting Email Spam - GVH Client Database
- Thread starter DomainBop
- Start date
drmike
100% Tier-1 Gogent
Yeah I now know what happened and haven't said the F*CK word so many times in 5 minutes in a long time.
Someone who use to be involved in GVH and owns said company deserves some time in a pair of handcuffs and some legalized sodomy to break his ass into the real world.
Kris
New Member
That little shit in Colorado, I'll go back there and find him myself. Received this shit this morning to an email address only ever used at GVH.
Howdy folks!
Just posting here to let you know I've moved these posts into their own thread from here:
Just posting here to let you know I've moved these posts into their own thread from here:
Kris
New Member
Yes. Ex employee dropepd the DB and imported the emails into MailChimp. He's in for a world of hurt.
DomainBop
Dormant VPSB Pathogen
I posted this on the other thread but will repeat it here for anyone who doesn't know Nexim owner Kaushal Subedi's relationship to GVH . He was a contractor for GVH last year who held various titles (and used various names) while working for GVH: "Vice President of Operations", "Chief Technology Officer", "Steve Wilson" . He was the main GVH tech guy for awhile last year, including during the security incidents in April (mass password reset triggered by poor security) and June (database breach, hacking again caused by piss poor security) , and had full access to all databases and customer data during the time he worked for GVH.
Last edited by a moderator:
drmike
100% Tier-1 Gogent
Yeah that sounds very proximate, about right.
Believe me, if this was me doing this GVH deal, Nexim would be cutting a check right now or turning their business over.
Unsure why Kaushal would do something so stupid at this point where massive attention on GVH. By doing such, he's going on spam lists, soiling his brand for a long time, and ruining any positive reputation he had.
This indeed was why I was F-bombing a bit ago. Thanks to @DomainBop for bringing this forward on here. I don't actively keep up with LET these days. In fact today I was supposed to tune out of vpsB also to address piles of work.
How old is he anyway? I called him a 'kiddy host' on Twitter ( https://twitter.com/vpsBoard/status/571392118700298241 ) because it seems that all of those who worked with GVH in the past were teenagers minus a select couple... Certainly a kiddy/skiddy move on his part regardless of age. But the lack of concern and forethought in how this would pan out is indicative of the actions and mindset of a teen.
And...
This shows the quality of individuals who were involved with GVH. While being hired as a contractor to GVH he also takes the database and uses it for his own "project".
In addition, this reflects poorly on Johnnyboy because he obviously doesn't know how to select and find quality individuals to hold and manage his customers' private data. Seriously, this is incredibly alarming. I don't know how many individuals were involved with GVH but if a single person were able to run off with the WHMCS database then this is a major issue.
You all see how shoddy this entire deployment was. Handing out WHMCS Admin access willy nilly. Unethical employees who don't care about the customer or even the business itself and instead only care about themselves. Business "owner" and//or managers who failed to actually do their job and manage their employees to minimize vulnerabilities, whether software, hardware, or social.
Like I said, I would never touch GVH with a 20 foot pole. Another big worry is if the only remaining support tech will do the same thing as his colleague. The caliber of people GVH Jon hired are absolutely unethical and terrible. I think the phrase goes "If it looks like shit, smells like shit, and feels like shit, you don't have to actually eat it to know it's shit." I don't know why anyone would be a client of GVH.
This shows the quality of individuals who were involved with GVH. While being hired as a contractor to GVH he also takes the database and uses it for his own "project".
In addition, this reflects poorly on Johnnyboy because he obviously doesn't know how to select and find quality individuals to hold and manage his customers' private data. Seriously, this is incredibly alarming. I don't know how many individuals were involved with GVH but if a single person were able to run off with the WHMCS database then this is a major issue.
You all see how shoddy this entire deployment was. Handing out WHMCS Admin access willy nilly. Unethical employees who don't care about the customer or even the business itself and instead only care about themselves. Business "owner" and//or managers who failed to actually do their job and manage their employees to minimize vulnerabilities, whether software, hardware, or social.
Like I said, I would never touch GVH with a 20 foot pole. Another big worry is if the only remaining support tech will do the same thing as his colleague. The caliber of people GVH Jon hired are absolutely unethical and terrible. I think the phrase goes "If it looks like shit, smells like shit, and feels like shit, you don't have to actually eat it to know it's shit." I don't know why anyone would be a client of GVH.
Last edited by a moderator:
I can't believe the downright stupidity of giving so many people that amount of access to whmcs.
drmike
100% Tier-1 Gogent
Late teens to early 20's. I believe he's an active college student.
Hey RobertClarke lol'ed at the post shortlink
= http://vpsb.in/skidspam 
An often very over used "get out" card. I stole your database and mailed all your clients because you never made me sign an NDA.
http://lowendtalk.com/discussion/comment/549816/#Comment_549816
So he's more or less admitting to yoinking the DB?
I mean, there's obviously people in there with a greenvaluehost@<THEIRDOMAIN.TLD> kinda email so it's pretty obvious where they got the list.
Still, how did the guy still have enough access to get in there to pull a dump?
Francisco
drmike
100% Tier-1 Gogent
paste or screencap please... Behind the great login firewall of LET
drmike
100% Tier-1 Gogent
.... is bullshit.
DomainBop
Dormant VPSB Pathogen
KSubedi on LET...
At most real companies, including mine, if an ex-employee made an admission that they're in possession of their former employers database that they'd have the FBI knocking on their door.
edit:
At most real companies, including mine, if an ex-employee made an admission that they're in possession of their former employers database that they'd have the FBI knocking on their door.
I've always just assumed that there wasn't a single person who worked for GVH who didn't run off with a copy of their database
The lack of concern for privacy and protecting customer data does seem to be fairly common among younger prepubescent hosts like Jonny (and the lack of concern for the "sanctity" of data is an attitude shared by many of their customers). Maybe its because many of them use their computers and servers primarily for entertainment and don't understand that yes, Virginia, people and companies really do keep important data that their lives and business depend on stored on their VPS's and dedicated servers and Cloud thingees: customer data, company and employee data and records, etc.
edit:
@MannDude, could we ban @mikho for calling that clown Sunn a "business owner"? Calling Sunn a business owner tarnishes the image of all business owners.
Last edited by a moderator: