- Joined
- 3 Nov 2010
- Messages
- 27,109
- Solutions
- 8
- Reaction score
- 36,949
The systems of Host Gator, a company that hosts over 8 million domains, have been apparently breached by s3rver.exe. The hacker described the attack in a Pastebin document.
By leveraging a post cookie injection present on the site’s tickets subdomain, he managed to obtain the administrator’s password. Then he uploaded a shell that allowed him to gain access to the domain files of hostgator.com.
The data dump doesn’t seem to contain any sensitive information, but it shows that he has possessed access to restricted areas.
After the next phase, he contacted a member of Host Gator’s support team, asking him why the tracking.hostgator.com domain is down. The technician confirmed that for some reason there appeared to be “an issue on the server.”
Update: A HostGator representative has contacted us, denying S3rver.exe's claims. He has stated that they haven't been breached and the password allegedly cracked by the hacker isn't used "for anything."
The files S3rver.exe has leaked are available for anyone, even those who aren't "skilled" hackers.
Furthermore, the tracking subdomain to which the hacker uploaded his files to can be easily manipulated to say things such as "tracking.hostgator.com/uploads/s3rver.php."
“tracking.hostgator.com has never loaded any content and never will as it will break how our tracking system works in conjunction with pixels,” the Host Gator representative explained.
More updates here.
By leveraging a post cookie injection present on the site’s tickets subdomain, he managed to obtain the administrator’s password. Then he uploaded a shell that allowed him to gain access to the domain files of hostgator.com.
The data dump doesn’t seem to contain any sensitive information, but it shows that he has possessed access to restricted areas.
After the next phase, he contacted a member of Host Gator’s support team, asking him why the tracking.hostgator.com domain is down. The technician confirmed that for some reason there appeared to be “an issue on the server.”
Update: A HostGator representative has contacted us, denying S3rver.exe's claims. He has stated that they haven't been breached and the password allegedly cracked by the hacker isn't used "for anything."
The files S3rver.exe has leaked are available for anyone, even those who aren't "skilled" hackers.
Furthermore, the tracking subdomain to which the hacker uploaded his files to can be easily manipulated to say things such as "tracking.hostgator.com/uploads/s3rver.php."
“tracking.hostgator.com has never loaded any content and never will as it will break how our tracking system works in conjunction with pixels,” the Host Gator representative explained.
More updates here.
