Last update at :2023-12-26,Edit by888u
Linode has been suffering from DDOS attacks since the Christmas period of 2015, and it has been going on for more than 10 days now. On January 7th, access to the linode official website in mainland China was basically normal. On the 6th, the Japanese site released the news that you must change the password to log in to the linode backend. Now let’s sort out the original text of the official website. The general meaning is: Due to various problems recently, it may be As a result of the account being compromised, there may be problems with our user's account security, so we need to set a new account password to log in to our Linode account.
Effective immediately, Linode Manager passwords have been expired. You will be prompted to set a new password on your next login. We regret this inconvenience, however this is a necessary precaution.
A security investigation into the unauthorized login of three accounts has led us to the discovery of two Linode.com user credentials on an external machine. This implies user credentials could have been read from our database, either offline or on, at some point. The user table contains usernames, email addresses, securely hashed passwords and encrypted two-factor seeds. The resetting of your password will invalidate the old credentials.
This may have contributed to the unauthorized access of the three Linode customer accounts mentioned above, which were logged into via manager.linode.com. The affected customers were notified immediately. We have found no other evidence of access to Linode infrastructure, including host machines and virtual machine data.
The entire Linode team has been working around the clock to address both this issue and the ongoing DDoS attacks. We've retained a well-known third-party security firm to aid in our investigation. Multiple Federal law enforcement authorities are also investigating and have cases open for both issues. When the thorough investigation is complete, we will share an update on the findings.
You may be wondering if the same person or group is behind these malicious acts. We are wondering the same thing. At this point we have no information about who is behind either issue. We have not been contacted by anyone taking accountability or making demands. The acts may be related and they may not be.
The security of your data, the functionality of your servers, and your confidence in Linode are extremely important to all of us. While we feel victimized ourselves, we understand it is our responsibility, and our privilege as your host, to provide the best possible security and service. You can help further enhance the security of your account by always using strong passwords, enabling two-factor authentication, and never using the same password at multiple services.
We sincerely apologize for the recent disruptions in your Linode service. Thank you for your patience, understanding and ongoing trust in Linode.
So once again, friends who have linode accounts are reminded to log in and change their passwords quickly to prevent their real information from being stolen! This incident also reflects that as a high-quality hosting provider, we must also take preventive measures against various attacks or intrusions. If this incident happened to an ordinary small hosting provider, the chances of running away would be very high. Regarding this matter, linode releases the latest news from time to time every day. I have to say that the service of a high-quality service provider is also good!
Recommended site searches: free domain name space application, Hong Kong server, managed host, Ministry of Industry and Information Technology domain name registration query, Guangdong server rental, white prostitution permanent high-performance server, independent IP space, free ASP space application, IP online agent, server hosting,
发表评论