amuck-landowner

RaptorNode has been apparently hacked.

MannDude

Just a dude
vpsBoard Founder
Moderator
Doing my rounds on WHT as I sometimes do, and see someone has posted that RaptorNode has been hacked. See the screenshot below:

qmh8avU.png

Src: http://www.webhostingtalk.com/showthread.php?t=1397485

What it looked like before: https://web.archive.org/web/20140625113831/http://www.raptornode.com/

It appears unclear at this time if this is a simple website defacement or if there has been any breach of data. Regardless, if you're a RaptorNode customer please be aware and take necessary steps to ensure the security of your data.
 

drmike

100% Tier-1 Gogent
I'd expect the Indonesian Cyber Army to post some boobies or something that offends their ruling party.

Hacking for Gaza, how nice....  War, what a racket.
 
Last edited by a moderator:

KuJoe

Well-Known Member
Verified Provider
They host their website on a cPanel server, this is why I try to avoid hosting critical websites on a shared webserver with other websites since I can guarantee the cPanel server has a few Wordpress installs which are major targets and easily the weakest link on the server.

EDIT: More info.

Their cPanel hostname: https://web02.fractionhost.com:2083/

Are they related to fractionhost.com or just using their shared hosting for their website?
 
Last edited by a moderator:

AThomasHowe

New Member
Why were they even targetted?
These aren't targeted attacks. They find one weak link on the server (as KuJope says, an old Wordpress install or whatever) and proceed to upload an index file to as many accounts as they can on the sever until they get booted. RaptorNode is just collateral damage.

If you add index.php to the URL you can see their old homepage:

http://raptornode.com/index.php
 

DomainBop

Dormant VPSB Pathogen
Why were they even targetted?
The hacker had no way of knowing the website wasn't owned by the IDF because RaptorNode's WHOIS is private.  Public WHOIS would have avoided this confusion. :)

Are they related to fractionhost.com or just using their shared hosting for their website?
Hard to tell if there's a relationship since both use private WHOIS.  Public WHOIS would have avoided this confusion. :)
 
Top
amuck-landowner