Hackers wipe 100,000 websites from hosting company Vaserv
June 10th, 2009 - 1:57 am ICT by John Le Fevre ( 2 comments )An English website hosting company may have lost the data for over 100,000 websites after hackers exploited a security vulnerability in software used to provide customers with hosting facilities.
According to Rus Foster, the company’s director, hackers managed to gain access to the root level of a key piece of software the company uses to provide its low-cost virtual website solutions.
“We were hit by a zero-day exploit” in HyperVM, a virtualization application made by LXLabs in Bangalore, India.
Foster said he’s been unable to reach anyone at LXLabs to discuss the suspected vulnerability, but data for about half of the websites hosted on Vaserv was destroyed all at once sometime Sunday evening.
Foster said about 50 percent of Vaserv’s customers used an unmanaged service, which doesn’t include data backup. As a result, at least half the websites that were hosted on the site remain offline.
Daniel Voyce, a web developer for Nu Order Webs, said, given the high level of server access they [the hackers] gained, [they] were likely able to intercept a wealth of sensitive data stored on Vaserv’s servers.
After 48-hours of frantic recovery attempts, Vaserv reported in a posting on its website that at least 24 virtual servers had suffered total data loss, as too had at least nine out of 33 nodes.
The company said it would provide customers who lost data with a new virtual private server on a new platform and provide two months free hosting as compensation.
Foster said it would depend on each customer whether they had their own backups of their websites, but he suspected many may have lost all of their internet presence.
So far no one is known to have claimed responsibility for the attack, which Foster said was, “a deliberate attack on our infrastructure.”
- BharatBerry: Mobile app for Nokia handsets - Nov 18, 2010
- Hackers group says it will target Iran - May 01, 2011
- Arrests made in malware fraud case which infected millions of computers worldwide - Nov 10, 2011
- Virtualisation poses challenges to disaster recovery plans: study - Dec 25, 2010
- Pakistan hackers wage 'cyber war' on Indian sites - Dec 04, 2010
- Microsoft web browser faces security risk - Feb 01, 2011
- Adobe acknowledges critical security flaw in Reader, Acrobat, and Flash Player - Jun 08, 2010
- Microsoft announces automatic upgrades for Internet Explorer - Dec 16, 2011
- Amazon stops hosting WikiLeaks - Dec 02, 2010
- 900m Internet Explorer users at risk as Microsoft warns of security flaw - Feb 01, 2011
- Beware of attack tool kits from malicious websites: Symantec - Jan 25, 2011
- Microsoft warns about flaw that makes hacking easier - Dec 26, 2010
- JavaScript can allow anyone to access your web-surfing history - Dec 04, 2010
- Israeli credit card data hacked - Jan 03, 2012
- Egyptian govt. exploited national infrastructure to cripple Internet: Experts - Feb 16, 2011
Tags: backups, bangalore india, deliberate attack, hackers, hosting company, infrastructure, internet presence, recovery attempts, root level, rus, security vulnerability, sensitive data, sunday evening, vaserv, virtual private server, virtual servers, web developer, website solutions, zero day
June 10th, 2009 at 5:34 am
My friends business website has been destroyed because of that crash. Website backups are very important, we had learned a hard way. Its hard to rely on the web hosts these days months ago our web host has gone out of business. Our site along with the contents vanished of the Internet. We had to recreate the whole thing all over again and waste 5 weeks and almost 3k on rebuilding from scrach. You should always be using an automated backup software or service. We use http://www.websitebackup.ca for mirroring our website on weekly basis. Good luck to all the folks who lost their sites.
Carson.
June 11th, 2009 at 5:12 pm
I am one of the client of Vaserv and I am currently having issue with my website. But I am sure Rus and his team will be nice enough to all the clients and they will help us.