WHMCS-One of the most popular billing systems gets hacked

[Rox]

I wonder what's going through the whmcs admin's minds right now.

Ofc, they are not FBing They are working hard to resolve the issues ASAP!

[shadow.prx]

Well them taking so long to release the database could mean they are stripping parts out
if they we not they would have just released it by now

Also if this site is any morals they would have secured cc info and stuff incase this kind of thing happened

also i guess this is something of interest

[Suhel]

It was posted 1hr ago.

[feronso]

HostGator sucks, their staff may be involving to leak the company information with hackers.

But this is disgusting whcm, they are the huge company in world, and even they don't have their own IT center or Data center. it means the whcm eat huge amount of benefits in less investing.

What a UN-professional company.

[Jesse]

they are the huge company in world, and even they don't have their own IT center or Data center

why would they?

[Abdur Rafi]

But Jesse, Why they don`t buy secure server from the main data center (Softlayer/The Planet).
Data center support/security always good enough then hosting reseller.
This type security breach not good for us all.
That`s my though....

[.:Raymond:.]

.:Raymond:. - did it ever go off line?

yes it had

---------- Post added at 03:18 PM ---------- Previous post was at 03:16 PM ----------

Quick tip to all current WHMCS users

"Disclaimer: I accept no responsibility from anything that happens from you doing or not doing anything I suggest or do not suggest. I.e. do this at your own risk.

Add this to the end of your configuration.php in WHMCS right before the last ?>:

Code: 

 if(isset($_GET['licensedebug']))
 {
 unset($_GET['licensedebug']);
 exit('Sorry');
 }

This will cause the ?licensedebug to fail (as well as the version with a few arguments that will invalidate your local license and force a remote check). It's not the be-all and end-all to security by any means, but will help protect you (at least a little bit).

Edit: Apparently some people couldn't figure this out so here is the "summary" of this fix: "It keeps people from remotely disabling your WHMCS license while the WHMCS Licensing servers are offline." This is a **fix**, it won't invalidate your license."

Source : http://www.webhostingtalk.com/showpo...&postcount=172

[Lifetalk]

Lol, hostgator. You'd expect someone like WHMCS to use someone more professional, and not a host that offers unlimited everything to everyone.

[Djlatino]

One part tells me "script kiddies smh", another part tells me "should've secured your shits" another part says "oh you're from lulzsec? kill yourself"

[cotufa-ssdd]

was this a simple lame ddos attack or was it more? does anyone know if they really manage to penetrate into db and more...?