主机迷

OneProvider 发生用户数据泄露,建议尽快修改密码

OneProvider 发生了用户数据泄露,理论上应该给所有用户都发了邮件,很奇怪的是我没有收到邮件,在 hostloc 看到,可能有其他用于也没收到邮件,所以在此分享一下,大家如果有 OneProvider 账户,建议尽快修改密码,如果还有 OneProvider 的 VPS,建议把 root 密码之类的也都改了。

另外多说一句,目前 OneProvider 的香港 LeaseWeb 机房已经彻底废了,三网基本都绕美,没法使用,很少部分地区不饶。

来源:https://www.hostloc.com/thread-523882-1-1.html

一、邮件原文

Dear customer,

We have discovered on February 18th an unauthorized access to a frontend entity of our infrastructure. Following investigation, it was determined that a limited amount of customer data was briefly consulted. While the unauthorized access was rapidly contained, the affected customers were immediately informed of the details in a separate message.

On February 21th, we have found that the incident was unfortunately more important than we originally believed. It is highly likely that a deprecated database backup, dating from December 2016, was partially retrieved.

The retrieved portions of the database contained: Customer Information, including hashed login passwords (to OnePanel).

The database does not contain payment information.

Because we take this situation very seriously, we have taken every appropriate measure to further secure our infrastructure and increase our security.

While your services are unlikely to have been compromised, we would like to remind you to make a habit of always changing the root passwords of your newly delivered servers.

As an additional measure of security, we have implemented an automatic password update feature that will prompt you to update your password every 6 months. You will see this feature upon your next login. We have also reset accesses for all inactive accounts. We also remind you that you can monitor the activity of your account at any time in the ‘Account’ section in both the “Activity Log” menu and the “Sessions” tab in the Account page.

We deeply apologize for what we realize is a grave situation, and for any inconvenience caused. Your account managers and our support team remain available for any questions you may have, or to assist you in examining as well as securing your infrastructure. We are taking the necessary steps with the concerned authorities.

Regards,

OneProvider.com

二、机器翻译

亲爱的顾客,

我们在2月18日发现未经授权访问我们基础设施的前端实体。经过调查,确定简要咨询了有限数量的客户数据。虽然未经授权的访问被迅速控制,但受影响的客户会立即通过单独的消息通知详细信息。

2月21日,我们发现事件不幸比我们原先认为的更重要。从2016年12月开始,部分检索已弃用的数据库备份很可能已被部分检索。

检索到的数据库部分包含:客户信息,包括散列登录密码(到OnePanel)。

该数据库不包含付款信息。

因为我们非常重视这种情况,所以我们采取了一切适当的措施来进一步保护我们的基础设施并提高安全性。

虽然您的服务不太可能受到损害,但我们想提醒您养成始终更改新交付服务器的root密码的习惯。

作为额外的安全措施,我们实施了自动密码更新功能,该功能将提示您每6个月更新一次密码。您将在下次登录时看到此功能。我们还重置了所有非活动帐户的访问权限。我们还提醒您,您可以随时在“帐户”部分的“活动日志”菜单和“帐户”页面的“会话”标签中监控帐户的活动。

对于我们认识到的严重情况,以及造成的任何不便,我们深表歉意。您的客户经理和我们的支持团队随时可以解答您的任何问题,或协助您检查和保护您的基础架构。我们正在与有关当局采取必要步骤。

问候,

OneProvider.com

退出移动版