Daniels Hosting hacked the web hosting provider to Dark Web

The Daniels service , one of the largest Dark Web hosting providers, was breached by hackers this week.

The hack took place on Thursday, 15, according to Daniel Winzen, the hosting programmer.


"According to my analysis, it seems that someone has managed to access the database and has deleted all the accounts," he said. DH portal.
Winzen also mentions that o The root of the server has been deleted, along with 6.500+ Dark Web services that were hosted on the platform.

Daniels Hosting"Unfortunately, all the data was lost and by design, there are no backups," Winzen said. "I will return the hospitality as soon as the vulnerability is identified and corrected."

I will make a full analysis of the log files, but based on my findings so far, I believe that the hacker was able to acquire database management rights. There is no indication that it had full access to the system and some accounts and files that were not part of the hosting remained intact.
I could reactivate the service once the vulnerability is found but first I have to find it.

So in the last two days, Winzen looks at potential vulnerabilities that the hacker used to access Daniels Hosting's hosting server.

At the moment, he detected a defect, a PHP 0Day. Details of this vulnerability were known for about a month only in the PHP programming cycles, and appeared to be released publicly on 14 November, one day before hack.

Winzen, however, does not believe he is the hacker's real entry point:

It is a vulnerability reported as a possible entry point by a user. However, I would find it unlikely to have been the real entry point, as the configuration files containing access details in the database were read only for the right users. This vulnerability did not give the necessary rights.

The German developer said that the hack could be "an opportunity to improve on some of the bad design choices of the past and start with a new improved service, which I will probably launch in December.

Let's mention that after the hack on Hosting II, a popular Dark Web hosting provider In February 2017, Daniels Hosting became the largest Dark Web hosting provider.

The hack may have facilitated the fact that the source s of Daniels Hosting was always open at GitHub and so could anyone read it and explore it.

_________________

iGuRu.gr The Best Technology Site in Greecefgns

every publication, directly to your inbox

Join the 2.100 registrants.

Written by giorgos

George still wonders what he's doing here ...

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).