Jump to content

WHT forum was hacked

Blueberry3.14
 Share

Recommended Posts

Blueberry3.14 Senior Member

Blueberry3.14

Posted
Posted

Forgive if this is old news, but http://www.webhostingtalk.com/showthread.php?t=729727 WebHostingTalk was hacked about a week ago (I just learned of it, and no this is NOT an April Fool's prank).

 

The forum restored users and data from a backup taken in October 2008, but a lot of data was still lost. Word on the street is that it was an inside job, but that's purely speculative. Off-site backups were dumped before the databases were emptied, etc.

 

The worst part is that the user database -- with usernames, email addresses and encrypted passwords -- was stolen and distributed on the Internet. So go change your password if you had a user account there, especially if it was a weak one.

Link to comment
Share on other sites
bear Senior Member

bear

Posted
Posted
Based on numerous opinions I've read, including that of Reed Caldwell, the CEO of ServInt (in a non-public forum, or I'd link the thread). The methods used, etc.

I say again, extremely speculative, as Reed would know nothing more than was released to the public. He, you, and everyone else is guessing without all the facts, I'm fairly certain. It remains to be seen if they know who was behind it, so if and when that becomes public, we'll all find out. ;)

Link to comment
Share on other sites
Chrisw Senior Member

Chrisw

Posted
Posted

Hmm, Ok I guess the rapidshare links that everyone was downloading of the tables and Lxlabs helpdesk was "hacked" since they were able to get his password as it was the same as his WHT password is all speculative?

 

Either way, what we know is what we know. What you don't is speculative ;)

Link to comment
Share on other sites
bear Senior Member

bear

Posted
Posted
Hmm, Ok I guess the rapidshare links that everyone was downloading of the tables and Lxlabs helpdesk was "hacked" since they were able to get his password as it was the same as his WHT password is all speculative?

What is this referring to?

Either way, what we know is what we know. What you don't is speculative

Who was this directed at?

Link to comment
Share on other sites
HostOrca Senior Member

HostOrca

Posted
Posted
Based on numerous opinions I've read, including that of Reed Caldwell, the CEO of ServInt (in a non-public forum, or I'd link the thread). The methods used, etc.

 

Just my opinion. You're free to form your own. Whatever. *shrugs*

 

And that's all it is, an opinion. It's not proof, just sheer speculation. If you think you've got proof, then contact inet and inform them.

 

It also appears that you have a problem if someone elses opinion differs from yourself, I think it's time to prove it, or move on.

Link to comment
Share on other sites
wise Member

wise

Posted
Posted

or perhaps WHT did not admit that it *could* have been taken when it took place... 27th march was when WHT was eventually secured several days after the hack. Now many days after - its been released CC info including cvv details were taken.

 

WHT have a responsiblity both legally and morally which they have both misled WHT users and illegally held CC information. People now are cancelling credit cards, yet if they had been cancelled 27th march, some would not be facing big CC charges made by fraud.

Link to comment
Share on other sites
Emerson Senior Member

Emerson

Posted
Posted

Hopefully this will be a wake up call to everyone and for Matt to implement payment systems like Quantum Vault or authnet's PIM to avoid anything like this happening to any of us.

As you see no matter how "secure" you have your system if they want it they WILL get it. Quantum Vault or authnet PIM would help with this.

Link to comment
Share on other sites
merlinpa1969 Senior Member

merlinpa1969

Posted
Posted

Looks like they got information that should have been purged from the system along time ago.....

 

If I read correctly the cc info that was actually obtained was OLD.....

I realize dosnt matter that its old it was still taken, this is true. but from reading the information that was obtained was NOT encrypted

Link to comment
Share on other sites
bear Senior Member

bear

Posted
Posted
or perhaps WHT did not admit

There is no conspiracy here, and no failed admissions. It simply did not appear to be an issue while they were investigating. It only came to light later.

I'm not defending the issue, just the claim that they were somehow intentionally withholding information. That simply isn't true, to the best of my knowledge.

some would not be facing big CC charges made by fraud.

CC holders are not responsible for charges made through fraud, and as soon as it was discovered the CC companies were notified, as required.

Looks like they got information that should have been purged from the system along time ago.....

If I read correctly the cc info that was actually obtained was OLD.....

This was my understanding as well.

Link to comment
Share on other sites
Lawrence Senior Member

Lawrence

Posted
Posted
Looks like they got information that should have been purged from the system along time ago.....

 

If I read correctly the cc info that was actually obtained was OLD.....

I realize dosnt matter that its old it was still taken, this is true. but from reading the information that was obtained was NOT encrypted

No, there was alot of still-very-valid credit card information in the database as well

Link to comment
Share on other sites
Guest
This topic is now closed to further replies.
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...

Important Information

By using this site, you agree to our Terms of Use & Guidelines and understand your posts will initially be pre-moderated

  I accept