We have been receiving threats of a cyberattack on our hosting service, which includes servers and databases, for the past few weeks. This is a serious concern, and we are working hard to mitigate the threat. The threat is not coming from any specific nation (although it is a known issue), but was made public by a credible individual that posted on YouTube. This individual has been able to compromise our servers and databases and may be able to access our information.
The threat is that the attacker has gained access to our systems through a “backdoor.” Backdoors are a feature that allows an individual to spy on and monitor system activity. Often there are ways to bypass the normal security features on the system itself, but if there is a backdoor, then the attacker may be able to do this. We are actively investigating this threat and are working to deploy additional security measures.
We’re not sure exactly how this attack has occurred, but we believe it may have been due to the theft of our data from a secure server and the breach of our own security. In the meantime, we have added additional security measures to our infrastructure to protect against this attack. Hopefully, this should keep our systems and database from being compromised.
For our customers who use Linux, we have added additional layers of protection for our MySQL databases. The databases are not automatically available via ssh, so you will need to configure your ssh settings to allow access to those databases.
The fact that we are still talking about this is a good thing. If you use Linux and you are still using your own server, you certainly don’t want your data being compromised on the other side of the world. If you are using a shared server, you will need to protect it against the threat of a rogue server.
The server itself was not compromised, only our client. It is still used to store our database files and our web site. We’re not sure what the specific threat vector was in the first place, but it would be good to hear more about it. In case you are curious, there is no way a hacker could possibly take down our server. There is no way our data would be available to anyone for a few weeks.
We have not yet been targeted. But we are worried about our security and the stability of our server. We apologize for any inconvenience.
Our server is currently using Ubuntu server, but we are also considering switching to OpenBSD. We are not sure which specific server security vulnerabilities we would need to patch on our server.
The cyberattack was a huge inconvenience to our team, but we are glad that our servers are not vulnerable to attack at this time. We are also glad that we still have access to the cloud. Because we now understand how important that is for our company, we are hoping to have cloud hosting available by the end of the month.
We are also using CentOS because we prefer it to Ubuntu for our cloud servers because it offers more features and is more secure. We have all of our servers running CentOS, but we decided to switch to Ubuntu because it is simpler and faster to get things set up.