amuck-landowner

Nexim Web Hosting Email Spam - GVH Client Database

drmike

100% Tier-1 Gogent
Today's drama starts with linuxthefish asking on the LET GVH/XFuse thread: "Did anyone else get an email from Nexim web hosting to the email account they used on GVH SolusVM?"
Yeah I now know what happened and haven't said the F*CK word so many times in 5 minutes in a long time.

Someone who use to be involved in GVH and owns said company deserves some time in a pair of handcuffs and some legalized sodomy to break his ass into the real world.
 

Kris

New Member
Today's drama starts with linuxthefish asking on the LET GVH/XFuse thread: "Did anyone else get an email from Nexim web hosting to the email account they used on GVH SolusVM?"
That little shit in Colorado, I'll go back there and find him myself. Received this shit this morning to an email address only ever used at GVH. 

Screen%20Shot%202015-02-27%20at%2010.47.34%20AM.png
 

MannDude

Just a dude
vpsBoard Founder
Moderator
This just gets more and more funny.

How'd that kid get those email address to begin with? Are you saying random ex-GVH employees have copies of DBs or what?
 

Kris

New Member
This just gets more and more funny.

How'd that kid get those email address to begin with? Are you saying random ex-GVH employees have copies of DBs or what?
Yes. Ex employee dropepd the DB and imported the emails into MailChimp. He's in for a world of hurt.
 

DomainBop

Dormant VPSB Pathogen
I posted this on the other thread but will repeat it here for anyone who doesn't know Nexim owner Kaushal Subedi's relationship to GVH .  He was a contractor for GVH last year who held various titles (and used various names) while working for GVH:  "Vice President of Operations", "Chief Technology Officer", "Steve Wilson" .  He was the main GVH tech guy for awhile last year, including during the security incidents in April (mass password reset triggered by poor security) and June (database breach, hacking again caused by piss poor security) , and had full access to all databases and customer data during the time he worked for GVH.
 
Last edited by a moderator:

drmike

100% Tier-1 Gogent
I posted this on the other thread but will repeat it here for anyone who doesn't know Nexim owner Kaushal Subedi's relationship to GVH .  He was a contractor for GVH last year who held various titles (and used various names) while working for GVH:  "Vice President of Operations", "Chief Technology Officer", "Steve Wilson" .  He was the main GVH tech guy for awhile last year, including during the security incidents in April (mass password reset triggered by poor security) and June (database breach, hacking again caused by piss poor security) , and had full access to all databases and customer data during the time he worked for GVH.
Yeah that sounds very proximate, about right.  

Believe me, if this was me doing this GVH deal, Nexim would be cutting a check right now or turning their business over.

Unsure why Kaushal would do something so stupid at this point where massive attention on GVH.   By doing such, he's going on spam lists, soiling his brand for a long time, and ruining any positive reputation he had.

This indeed was why I was F-bombing a bit ago.  Thanks to @DomainBop for bringing this forward on here.  I don't actively keep up with LET these days.  In fact today I was supposed to tune out of vpsB also to address piles of work.
 

MannDude

Just a dude
vpsBoard Founder
Moderator
How old is he anyway? I called him a 'kiddy host' on Twitter ( https://twitter.com/vpsBoard/status/571392118700298241 ) because it seems that all of those who worked with GVH in the past were teenagers minus a select couple... Certainly a kiddy/skiddy move on his part regardless of age. But the lack of concern and forethought in how this would pan out is indicative of the actions and mindset of a teen.
 

HalfEatenPie

The Irrational One
Retired Staff
And...

This shows the quality of individuals who were involved with GVH.  While being hired as a contractor to GVH he also takes the database and uses it for his own "project".  

In addition, this reflects poorly on Johnnyboy because he obviously doesn't know how to select and find quality individuals to hold and manage his customers' private data.  Seriously, this is incredibly alarming.  I don't know how many individuals were involved with GVH but if a single person were able to run off with the WHMCS database then this is a major issue.  

You all see how shoddy this entire deployment was.  Handing out WHMCS Admin access willy nilly.  Unethical employees who don't care about the customer or even the business itself and instead only care about themselves.  Business "owner" and//or managers who failed to actually do their job and manage their employees to minimize vulnerabilities, whether software, hardware, or social.  

Like I said, I would never touch GVH with a 20 foot pole.  Another big worry is if the only remaining support tech will do the same thing as his colleague.  The caliber of people GVH Jon hired are absolutely unethical and terrible.  I think the phrase goes "If it looks like shit, smells like shit, and feels like shit, you don't have to actually eat it to know it's shit."  I don't know why anyone would be a client of GVH.
 
Last edited by a moderator:

drmike

100% Tier-1 Gogent
How old is he anyway? I called him a 'kiddy host' on Twitter ( https://twitter.com/vpsBoard/status/571392118700298241 ) because it seems that all of those who worked with GVH in the past were teenagers minus a select couple... Certainly a kiddy/skiddy move on his part regardless of age. But the lack of concern and forethought in how this would pan out is indicative of the actions and mindset of a teen.
Late teens to early 20's.  I believe he's an active college student.

How old is he anyway? I called him a 'kiddy host' on Twitter ( https://twitter.com/vpsBoard/status/571392118700298241 ) because it seems that all of those who worked with GVH in the past were teenagers minus a select couple... Certainly a kiddy/skiddy move on his part regardless of age. 
Hey RobertClarke lol'ed at the post shortlink :)  = http://vpsb.in/skidspam 
 

Lee

Retired Staff
Verified Provider
Retired Staff

Francisco

Company Lube
Verified Provider
An often very over used "get out" card.  I stole your database and mailed all your clients because you never made me sign an NDA.

http://lowendtalk.com/discussion/comment/549816/#Comment_549816
So he's more or less admitting to yoinking the DB?

I mean, there's obviously people in there with a greenvaluehost@<THEIRDOMAIN.TLD> kinda email so it's pretty obvious where they got the list.

Still, how did the guy still have enough access to get in there to pull a dump?

Francisco
 

mikho

Not to be taken seriously, ever!
So he's more or less admitting to yoinking the DB?


I mean, there's obviously people in there with a greenvaluehost@<THEIRDOMAIN.TLD> kinda email so it's pretty obvious where they got the list.


Still, how did the guy still have enough access to get in there to pull a dump?


Francisco
In that post he is not talking about GVH database, he "helped"/worked for another company during his time at GVH.


Other business owners username at LET: @sunn.
 

Lee

Retired Staff
Verified Provider
Retired Staff
His story is now

Guys, after some investigation here is what I found. I had supplied the seo company with a list of emails that i had extracted from databses backups on my computer for nexim. Looks like it included the solusvm databse from gvh when i was working with them. I take responsiblilities for everything that happened and I should have been more careful about filtering which backups to scrape emails from.

So yes, I did make a mistake and learnt from it, and I apologize to everyone who got the emails. I did not mean to do any harm or cause any trouble, and I should have been more careful.
 

DomainBop

Dormant VPSB Pathogen
KSubedi on LET...


Guys, after some investigation here is what I found. I had supplied the seo company with a list of emails that i had extracted from databses backups on my computer for nexim. Looks like it included the solusvm databse from gvh when i was working with them. I take responsiblilities for everything that happened and I should have been more careful about filtering which backups to scrape emails from.

So yes, I did make a mistake and learnt from it, and I apologize to everyone who got the emails. I did not mean to do any harm or cause any trouble, and I should have been more careful.

At most real companies, including mine, if an ex-employee made an admission that they're in possession of their former employers database that they'd have the FBI knocking on their door.

I don't know how many individuals were involved with GVH but if a single person were able to run off with the WHMCS database then this is a major issue. 
I've always just assumed that there wasn't a single person who worked for GVH who didn't run off with a copy of their database :p

the actions and mindset of a teen.
The lack of concern for privacy and protecting customer data does seem to be fairly common among younger prepubescent hosts like Jonny (and the lack of concern for the "sanctity" of data is an attitude shared by many of their customers).  Maybe its because many of them use their computers and servers primarily for entertainment and don't understand that yes, Virginia, people and companies really do keep important data that their lives and business depend on stored on their VPS's and dedicated servers and Cloud thingees: customer data, company and employee data and  records, etc.

edit:

mikho said "Other business owners username at LET: @sunn."
@MannDude, could we ban @mikho for calling that clown Sunn a "business owner"?  Calling Sunn a business owner tarnishes the image of all business owners. :p
 
Last edited by a moderator:
Top
amuck-landowner