News

Hackers Leave Advice for Breached Security Company

Security firm Staminus servers have been taken offline today, following a supposedly successful cyber-attack on their network. The Newport Beach, California-based hosting and distributed denial of service (DDoS) protection company went down at 8 am EST on Thursday, with the company communicating details of the event via Twitter citing it as a “rare event [that] cascaded across multiple routers in a system-wide event.”

This ‘rare event’ was quickly revealed to be a far more deliberate malicious act against the company, with a data dump of Staminus’ servers being posted to the internet shortly afterwards. This leak contained the details of a large number of customer names and email addresses as well as their database table structures, routing tables and other crucial operational information. An unnamed Staminus customer verified the contents of the hack, confirming that his details were among those released in the dump. The posters of the dump declared that they had managed to gain access to all of Staminus’ routers and networked systems, resetting them to factory settings.

The dump begins with a note from the hackers responsible for the breach, titled “TIPS WHEN RUNNING A SECURITY COMPANY.” This preface detailed a number of security flaws found while breaching Staminus’ systems in a sarcastic style:

  • Use one root password for all the boxes
  • Expose PDU’s [power distribution units in server racks] to WAN with telnet auth
  • Never patch, upgrade or audit the stack
  • Disregard PDO [PHP Data Objects] as inconvenient
  • Hedge entire business on security theatre
  • Store full credit card info in plaintext
  • Write all code with wreckless [sic] abandon

While no credit card information was visible in the dumped data, doing so unencrypted goes against Payment Card Industry (PCI) security standards and inappropriate for any company handling such details, especially one claiming to be in the security business.

Also laid bare was the colourful selection of customers that Staminus served. From a number of small gaming server operators, including those for Minecraft all the way to the Ku Klux Klan, it was found that the KKK’s official website was in fact hosted by Staminus, as well as a number of affiliated sites such as the American Heritage Committee.

While Staminus claimed that service had been restored globally, many customers took to Twitter claiming that it was not the case. Since then, the only communication from the firm has been the announcement of a statement from their CEO, which is linked to their (currently offline) site. When Staminus will regain full functionality of the network is anyone’s guess, however, it will be interesting to see how the company will recover from this major event.

Alexander Neil

Disqus Comments Loading...

Recent Posts

ASUS VY249HF Eye Care Gaming Monitor

Value for money Good product with good quality Durable Was £129.00 Now £95.00 Keep up…

11 hours ago

ASUS TUF GAMING B650M-E WIFI 

Engineered with military-grade components, an upgraded power solution and a comprehensive cooling system, this motherboard…

11 hours ago

Mercusys AC1200 Wi-Fi Bluetooth 5.0 PCIe Adapter 

Strong Dual Band Wi-Fi Speed — Speeds up to 867 Mbps (5 GHz) + 300…

11 hours ago

EPOMAKER RT100 97 Keys Gasket BT5.0/2.4G/USB-C Mechanical Gaming Keyboard

【Exclusive Detachable Smart TFT-LCD Display】Are you an experienced keyboard hobbyist wishing for a fully functional…

11 hours ago

AOC AGON 40 Inch AG405UXC Gaming Monitor

40 inch Gaming Monitor FreeSync G Sync Model number: AOC AG405UXC Colour: black red Was…

11 hours ago

KOORUI 60% Mechanical Gaming Keyboard

69 Keys with Gorgeous Backlighting. The 60% gaming keyboard can save desk space. The detachable…

11 hours ago