Welcome to WikiWirral, sharing is what we do best.
Forum Stats
12455 Members
65 Forums
73754 Topics
996994 Posts
59 posts in the last 24hrs
Max Online: 7831 @ 8th Apr 2013 4:18pm
Who's Online - Click Me
73 registered (alan128, 15 invisible), 1387 Guests and 206 Spiders online.
Key: Admin, Global Mod, Mod
Social Media : Follow Us


(Views 7days)This Weeks Most Read
Games for children 1191
Submarine Disaster 487
Fitting bathroom lights need help 436
Anyone read this ? 312
Bath Lifts 218
Great Mystery Of Our Time 180
Charity fishing match 144
Murderer walks free 143
Likely Lad Rodney Dies 138
Are there any doctors or nurses on here. 128
New General Forums
Great Mystery Of Our Time
by Spellbinder
21st Nov 2017 2:19pm
Brexit bill
by casper
20th Nov 2017 7:33pm
Telephone Caller Alert - they are NOT BT BROADBAND
by Laraine
17th Nov 2017 6:04pm
Are you a Mathematician ?
by granny
15th Nov 2017 8:59am
New Wirral History
Downloadable oldwirral pdfs
by derekdwc
9th Oct 2017 12:26pm
Forum Tips
Photo Gallery Forums
clipper yachts arriving for round the world race
Azamara,silouette and balmoral this mornig
Topic Replies
Submarine Disaster
by RUDEBOX
Yesterday at 08:43 PM
Murderer walks free
by _Ste_
Yesterday at 07:36 PM
David Cassidy
by starakita
Yesterday at 05:25 PM
Wheelbarrow wanted
by zigzagwanderer
Yesterday at 02:03 PM
Lenovo H30-50 Slim Line Fast PC
by markyport
Yesterday at 12:50 PM
Likely Lad Rodney Dies
by Dilly
Yesterday at 09:16 AM
Extending dining table with six chairs
by kazaroo
21st Nov 2017 9:21pm
Fitting bathroom lights need help
by diggingdeeper
21st Nov 2017 4:35pm
What is your Daily Exercise ?
by granny
20th Nov 2017 10:11pm
November
M Tu W Th F Sa Su
1 2 3 4 5
6 7 8 9 10 11 12
13 14 15 16 17 18 19
20 21 22 23 24 25 26
27 28 29 30
Recent Posts : What's On ?
The Lanterns at Chester Zoo
by granny
16th Nov 2017 1:05pm
bonfire night
by snowhite
3rd Nov 2017 5:40pm
Topic Options
Rate This Topic
#326822 - 8th Jun 2009 10:39pm 100,000 Websites Wiped Out By ZeroDay Exploit
MattLFC Offline
Wiki Master

Registered: 14th Aug 2004
Posts: 22315
Loc: Moreton/Beirut/Mobile
Originally Posted By: The Register, and my good friend Russell :-)
A large internet service provider said data for as many as 100,000 websites was destroyed by attackers who targeted a zero-day vulnerability in a widely-used virtualization application.

Technicians at UK-based Vaserv.com were still scrambling to recover data on Monday evening UK time, more than 24 hours after unknown hackers were able to gain root access to the company's system, Rus Foster, the company's director told The Register. He said the attackers were able to penetrate his servers by exploiting a critical vulnerability in HyperVM, a virtualization application made by a company called LXLabs.

"We were hit by a zero-day exploit" in version 2.0.7992 of the application, he said. "I've heard from other people they've been hit by the same thing." Foster said he's been unable to reach anyone at LXLabs to discuss the suspected vulnerability. The Register has also received no response to inquiries sent to the company, which according to its website is located in Bangalore.

According to Foster, data for about half of the websites hosted on Vaserv was destroyed all at once sometime Sunday evening, shortly after administrators noticed "strangeness" on the system. The attackers had the ability to execute sensitive Unix commands on the system, including "rm -rf," which forces a recursive delete of all files.

All a can say is, it wasnt me! bananalama

The Register

Top
Google Ads
#326826 - 8th Jun 2009 11:03pm Re: 100,000 Websites Wiped Out By ZeroDay Exploit [Re: MattLFC]
diggingdeeper Offline

Wiki Master

Registered: 9th Jul 2008
Posts: 10808
Loc: Birkenhead
I think this is the same company - News article

"High Availability, Virtualisation and Disaster Recovery Solutions Now Available From VAServ"
_________________________
In a time of universal deceit - telling the truth is a revolutionary act. George Orwell

When the debate is lost, slander becomes the tool of the loser. Socrates

Top
#326827 - 8th Jun 2009 11:07pm Re: 100,000 Websites Wiped Out By ZeroDay Exploit [Re: diggingdeeper]
MattLFC Offline
Wiki Master

Registered: 14th Aug 2004
Posts: 22315
Loc: Moreton/Beirut/Mobile
The scary thing is, there is still hundreds of hosts still using HyperVM... I mean, come on!!!!

hammer

Top
#326829 - 8th Jun 2009 11:34pm Re: 100,000 Websites Wiped Out By ZeroDay Exploit [Re: MattLFC]
Tony_1985 Offline

Forum Master

Registered: 19th Aug 2006
Posts: 2421
Loc: Ellesmere Port
The server my sites and my mates sites are all hosted on are unaffected as yet

We use LXadmin, but i think after this he might change over

Top
#326832 - 8th Jun 2009 11:53pm Re: 100,000 Websites Wiped Out By ZeroDay Exploit [Re: Tony_1985]
MattLFC Offline
Wiki Master

Registered: 14th Aug 2004
Posts: 22315
Loc: Moreton/Beirut/Mobile
Dont touch LX Labs with a bargpole man, all their software appears to be ridiculed with security issues and they dont seem to give a damn. If its running HyperVM, tell him (or his providers) to shut it down at once. If in doubt just take a look at WHT right now, its in absolute disarray with the fallout...

This issue was believed to have been reported to them on the 24th May, yet the zero day strike was Sunday 7th June, they had claimed to have fixed all the flaws with a the issuing of a security patch on Saturday, obviously they were lying.

The pathetic thing is, if they had announced the issues to their partners, it would have simply been a case of shut down HyperVM until the issues were resolved, now though, they have caused an obscene amount of damage and will hopefully go bankrupt as a result of it.

Top
#326852 - 9th Jun 2009 10:13am Re: 100,000 Websites Wiped Out By ZeroDay Exploit [Re: MattLFC]
MattLFC Offline
Wiki Master

Registered: 14th Aug 2004
Posts: 22315
Loc: Moreton/Beirut/Mobile
OMFG, serious shit...

LX Labs Boss Commits Suicide After Exploit Wipes Out 100,000 Websites

Originally Posted By: The Register
The boss of Indian software firm LxLabs was found dead in a suspected suicide on Monday.

Reports of the death of K T Ligesh, 32, come in the wake of the exploitation of a critical vulnerability in HyperVM, a virtualization application made by LXLabs, to wipe out data on 100,000 sites hosted by the UK web hosting firm VAserv.

The effect of his death on the development of updated software by LxLabs is unknown at time of writing.

Ligesh was found hanged in his Bangalore house on Monday morning, after a late night drinking session. The Times of India reports that he was upset with the loss of a recent contract. Ligesh was also still coming to terms with the suicides by hanging of his sister and mother five years ago.

Security researchers at Milw0rm warn that the Kloxo (formerly Lxadmin) web hosting platform from LxLabs contains 24 security vulnerabilities and exploits. The flaws include SQL injection vulnerabilities and flaws that create a way for hackers to gain file access to files hosted on a vulnerable system.

The vulnerabilities are confirmed to affect Klaxo version 5.75, though other versions may also be affected. Milw0rm went public with an alert on the vulnerability last Thursday after failing to hear back from LxLabs in what it considered to be a timely manner.

Jeeze, I have spent upwards of the last 40 hours, with no sleep and little to eat since Saturday night (too busy and lost appetite lol) sorting out all the crap thanks to this, but no way in hell would I have ever wished this. His software may have caused millions of pounds worth of damage to companies, organisations etc, but at the end of the day its just money and time, shit happens and were used to it in this industry, I really feel for the guys family and friends and am so sorry these has caused such a tragic event.

It all seemed very exciteable, something to talk about within the inustry and lots of mess to clear up, which is what we admins do best (and in all honesty, its our job at the end of the day), but this just puts it into perspective, and suddenly its not so much fun now, and very muted.

And to top things off, BlueSquare Data have now announced they will be taking over the operations of VAServ, very sad for me as I have worked with VAServ for 5 years now and treated well throughout by Rus and the team, I have a feeling the service won't be so friendly or personal with BlueSquare - the boss Matthew Munson is a likeable chap, I know from dealing with Poundhost on occasion, but the company is just far too big. It makes sense as VAServ colocate in BlueSqaure III and have their UK offices there, and also BlueSquare have their own in-house developed alternative to HyperVM, but still... Rus has cited since the announcement, a major factor in the decision is relating to him feeling part-responsibility for the guys death, which of course is silly, but I can understand where he coming from, he must be so emotionally and physically drained right now, I really feel for him and fully understand his decision.

A very sad day for the industry. frown

Top

Moderator:  Mod 
Random Wirral Images

Click to View Topic.
Newest Topics
Murderer walks free
by _Ste_
Yesterday at 02:29 PM
David Cassidy
by cools
Yesterday at 09:17 AM
Likely Lad Rodney Dies
by fish5133
21st Nov 2017 7:43pm
Submarine Disaster
by diggingdeeper
20th Nov 2017 5:46pm
Fitting bathroom lights need help
by yr20405
17th Nov 2017 11:29pm
For Sale & Free
Wheelbarrow wanted
by zigzagwanderer
Yesterday at 02:03 PM
Lenovo H30-50 Slim Line Fast PC
by markyport
Yesterday at 12:50 PM
Extending dining table with six chairs
by kazaroo
20th Nov 2017 4:46pm
Water Dispenser Cold Cool Machine Cooler
by markyport
19th Nov 2017 4:45pm
where to get cheap carpet
by mickturner
17th Nov 2017 4:24pm
Featured Member
Registered: 21st Jul 2009
Posts: 1463
Newest Members
Ria63, Stephen1953, negusmat, wagonwheel82, Norfolk
12455 Registered Users
Today's Birthdays
No Birthdays
New Wirral Info
Fitting bathroom lights need help
by yr20405
17th Nov 2017 11:29pm
Games for children
by granny
17th Nov 2017 1:35am
Bath Lifts
by locomotive
16th Nov 2017 6:22pm
The Lanterns at Chester Zoo
by granny
16th Nov 2017 1:05pm
Travelling Bus and Train Which Tickets?
by fish5133
15th Nov 2017 5:31pm
News : New Topics
Murderer walks free
by _Ste_
Yesterday at 02:29 PM
David Cassidy
by cools
Yesterday at 09:17 AM
Submarine Disaster
by diggingdeeper
20th Nov 2017 5:46pm
Anyone read this ?
by venice
16th Nov 2017 3:22pm
Is this crime against humanity
by granny
13th Nov 2017 4:04pm
New Enthusiast Forums
Likely Lad Rodney Dies
by fish5133
21st Nov 2017 7:43pm
Charity fishing match
by paul110180
17th Nov 2017 9:29pm
Are there any doctors or nurses on here.
by granny
16th Nov 2017 11:52pm
Taltalk Broadband Dying
by diggingdeeper
15th Nov 2017 3:40am
Replacement Key Fob casing
by fish5133
14th Nov 2017 7:45pm
(Views 24hrs)Trending Newest Topics
Murderer walks free 143
David Cassidy 125
Wheelbarrow wanted 36
Wirral Sunrise Sunset
Sunrise Thu 7:53am
Sunset Thu 4:04pm
Local Time Thu 1:10am
WikiWirral Can . . . .