Hall of Famer
10-29-2015, 11:58 AM
The world’s most popular Free Web Hosting company 000Webhost has suffered a major data breach, exposing more than 13.5 Million of its customers' personal records.
The stolen data includes usernames, passwords in plain text, email addresses, IP addresses and last names of around 13.5 Million of 000Webhost's customers.
According to a recent report published by Forbes (http://www.forbes.com/sites/thomasbrewster/2015/10/28/000webhost-database-leak/), the Free Hosting service provider 000Webhost was hacked in March 2015 by an anonymous hacker.
In a post (https://www.facebook.com/000webhost.Global/posts/998261600194776) on its official Facebook page, the hosting company has acknowledged the data breach and posted the following statement:
"We have witnessed a database breach on our main server. A hacker used an exploit in old PHP version to upload some files, gaining access to our systems. Although the whole database has been compromised, we are mostly concerned about the leaked client information."
The stolen data was obtained by Troy Hunt, an Australian security researcher, who received the data from an anonymous source and also confirmed the authenticity of the data.
"By now there's no remaining doubt that the breach is legitimate and that impacted users will have to know," Hunt wrote in a blog post (http://www.troyhunt.com/2015/10/breaches-traders-plain-text-passwords.html) published Wednesday. "I'd prefer that 000webhost be the ones to notify [its customer] though."
Read more at:
http://thehackernews.com/2015/10/free-web-hosting-hacking.html
The stolen data includes usernames, passwords in plain text, email addresses, IP addresses and last names of around 13.5 Million of 000Webhost's customers.
According to a recent report published by Forbes (http://www.forbes.com/sites/thomasbrewster/2015/10/28/000webhost-database-leak/), the Free Hosting service provider 000Webhost was hacked in March 2015 by an anonymous hacker.
In a post (https://www.facebook.com/000webhost.Global/posts/998261600194776) on its official Facebook page, the hosting company has acknowledged the data breach and posted the following statement:
"We have witnessed a database breach on our main server. A hacker used an exploit in old PHP version to upload some files, gaining access to our systems. Although the whole database has been compromised, we are mostly concerned about the leaked client information."
The stolen data was obtained by Troy Hunt, an Australian security researcher, who received the data from an anonymous source and also confirmed the authenticity of the data.
"By now there's no remaining doubt that the breach is legitimate and that impacted users will have to know," Hunt wrote in a blog post (http://www.troyhunt.com/2015/10/breaches-traders-plain-text-passwords.html) published Wednesday. "I'd prefer that 000webhost be the ones to notify [its customer] though."
Read more at:
http://thehackernews.com/2015/10/free-web-hosting-hacking.html