Daniels Hosting hacked the web hosting provider to Dark Web

Daniels Hosting, one of the largest Dark Web hosting providers, was hacked by hackers this week.

The hack took place on Thursday, 15, according to Daniel Winzen, the hosting programmer.

“Σύμφωνα με την ανάλυση μου φαίνεται ότι κάποιος κατάφερε να έχει στη βάση δεδομένων και έχει διαγράψει όλους τους λογαριασμούς”, αναφέρει στο DH portal.
Winzen also reports that the server's root account has been deleted, along with 6.500 + Dark Web services hosted on the platform.

Daniels Hosting"Unfortunately, all the data was lost and by design, there are no backups," Winzen said. "I will return the hospitality as soon as the vulnerability is identified and corrected."

I will make a full analysis of the log files, but based on my findings so far, I believe that the hacker was able to acquire database management rights. There is no indication that it had full access to the system and some accounts and files that were not part of the hosting remained intact.
I could reactivate the service once the vulnerability is found but first I have to find it.

So them In recent days, Winzen has been considering possible which the hacker used to gain access to Daniels Hosting's hosting server.

At the moment, he detected a defect, a PHP 0Day. Details of this vulnerability were known for about a month only in the PHP programming cycles, and appeared to be released publicly on 14 November, one day before hack.

Winzen, however, does not believe he is the hacker's real entry point:

Είναι μια ευπάθεια που αναφέρθηκε ως πιθανό σημείο εισόδου από έναν χρήστη. Ωστόσο, θα θεωρούσα ότι είναι απίθανο να υπήρξε το πραγματικό σημείο εισόδου, καθώς τα configuration files που περιείχαν λεπτομέρειες στη βάση δεδομένων ήταν μόνο για ανάγνωση για τους κατάλληλους χρήστες. Αυτή η ευπάθεια δεν έδινε τα απαραίτητα δικαιώματα.

The German developer said that the hack could be "an opportunity to improve on some of the bad design choices of the past and start with a new improved service, which I will probably launch in December.

Let's mention that after the hack on Hosting II, a popular Dark Web hosting provider In February 2017, Daniels Hosting became the largest Dark Web hosting provider.

Το hack μπορεί να διευκόλυνε το γεγονός ότι ο του Daniels Hosting ήταν πάντα ανοιχτός στο GitHub and so could anyone read it and explore it.


iGuRu.gr The Best Technology Site in Greecefgns

Subscribe to Blog by Email

Subscribe to this blog and receive of new posts by email.

Written by giorgos

George still wonders what he's doing here ...

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).