Hacked DirectAdmin site and client database

    image

    Yesterday, thousands of DirectAdmin customers received an email with the following content [free translation]:

    From: DirectAdmin
    Subject: DirectAdmin Client Message

    Dear% username%,

    Please note that a vulnerability exists in the current version of DirectAdmin.
    In order to find out how to protect your server, until we have resolved the patch issue,
    please visit hxxp: //www.austinfosec.com.au/update.php [phishing link, there is a trojan]

    Regards,
    DirectAdmin.com


    Attackers, at a minimum, gained access to the full name, mailboxes, and license numbers.
    There is a risk that they gained access also to the client panels themselves.
    The DirectAdmin administration acknowledges the fact that the distribution was made from their server, but claims that the client panels are completely safe.

    Discussion on the official DirectAdmin forum .

    Also popular now: