Jump to content
Matt

21st May 2012 - Further Update

Recommended Posts

21st May 2012 - Further Update

 

Following an initial investigation I can report that what occurred today was the result of a social engineering attack.

 

The person was able to impersonate myself with our web hosting company, and provide correct answers to their verification questions. And thereby gain access to our client account with the host, and ultimately change the email and then request a mailing of the access details.

 

This means that there was no actual hacking of our server. They were ultimately given the access details.

 

This is obviously a terrible situation, and very unfortunate, but rest assured that this was no issue or vulnerability with the WHMCS software itself.

 

We are immediately reviewing all of our hosting arrangements, and will be migrating to a new setup at the earliest opportunity.

 

I would like to take this opportunity to thank all of you who have sent in messages of support, and offers of help. It has clearly been a very stressful time, and I thank everyone both personally and on behalf of WHMCS for their loyalty and support.

 

The matter is now in the hands of the FBI.

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

  • Recently Browsing   0 members

    No registered users viewing this page.

×

Important Information

By using this site, you agree to our Terms of Use & Guidelines