PERINGATAN dari cPanel support, hacked!

Discussion in 'Software Hosting dan Control Panel' started by Bforce, 22 Feb 2013.

Thread Status:
Not open for further replies.
  1. Bforce

    Bforce _ DWH Admin Web Hosting (Company)

    Messages:
    1,420
    Likes Received:
    305
    Trophy Points:
    83
    Code:
    Salutations, 
    
    You are receiving this email because you have opened a ticket with our support staff in
    the last 6 months. cPanel, Inc. has discovered that one of the servers we utilize in the
    technical support department has been compromised.
    
    While we do not know if your machine is affected, you should change your root level password
    if you are not already using ssh keys. If you are using an unprivileged account with "sudo"
    or "su" for root logins, we recommend you change the account password. Even if you are
    using ssh keys we still recommend rotating keys on a regular basis.
    
    As we do not know the exact nature of this compromise we are asking for customers to take
    immediate action on their own servers. cPanel's security team is continuing to investigate
    the nature of this security issue.
    
    --cPanel Security Team  
    
     
    cpserv likes this.
  2. cpserv

    cpserv Expert 1.0

    Messages:
    866
    Likes Received:
    123
    Trophy Points:
    43
    tak kirain cpanelnya itu sendiri yg kena hack. gataunya server supportnya tho.. blom pernah buka ticket kesana brarti aman yak pakde? :D tapi tak rotate dulu ah keynya, udah 2 bulan blom dirotasi. :p
     
  3. duniadata

    duniadata Beginner 2.0

    Messages:
    73
    Likes Received:
    7
    Trophy Points:
    8
    Cek di forum cPanel http://forums.cpanel.net/f185/cpanel-security-325062.html

    Tapi aneh juga, kok bisa terkirim dari mail server-nya cPanel ya ?
     
  4. Afiv

    Afiv Apprentice 1.0

    Messages:
    382
    Likes Received:
    30
    Trophy Points:
    28
    Threadnya sama kaya yang dibuat om ceo.ahul :p
     
  5. Bforce

    Bforce _ DWH Admin Web Hosting (Company)

    Messages:
    1,420
    Likes Received:
    305
    Trophy Points:
    83
    Kayaknya itu bukan jawaban resmi dari staff cpanel.

    Juga alamat yang menerima email tersebut private dan hanya digunakan untuk kontak tertentu, termasuk cpanel, dan menerima email tersebut yang dikirim dari IP cpanel.
    Code:
    Received: from mx1.cpanel.net (mx1.cpanel.net. [208.74.121.68])
            by mx.google.com with ESMTPS id q15si315431ann.199.2013.02.21.16.50.20
            (version=TLSv1 cipher=RC4-SHA bits=128/128);
            Thu, 21 Feb 2013 16:50:21 -0800 (PST)
     
  6. twistedshells

    twistedshells Apprentice 1.0

    Messages:
    277
    Likes Received:
    18
    Trophy Points:
    18
    Sudah ada jawaban resmi dari Cpanel:

     
  7. duniadata

    duniadata Beginner 2.0

    Messages:
    73
    Likes Received:
    7
    Trophy Points:
    8
    Dapat konfirmasi dari technical support cPanel
    So, segera ganti password root, login SSH, dll
    Tapi selama ini kalau minta bantuan ke cPanel kita selalu kasihnya temporary password kok, mestinya ya aman ya ....
    Masalah secara periodik mesti ganti password itu kan sudah SOP-nya lah ....
     
Loading...
Thread Status:
Not open for further replies.

Share This Page

Loading...