How exactly a hetzner dedicated server is compromised ?
I have a hetzner server, reinstall it fresh. Because, the term on my current provider is not finished yet, I don't use immediately. About a week later, I got email from hetzner.
I know I can just reinstall it again, it's just I am curious. How is a fresh installed dedicated server got compromised ?
Does the password sent by email in plain text is intercepted by middleman ? does hetzner database compromised ?
I mean is it possible to login to a server without a password at all ? If it's possible, I want to know how ?
As of right now, I just reinstalled the server and turned it off.