XSLTEL hacked

[mazzo]

i have not received any email like this !
then i have to take a full backup from the cpanel

[CJ]

^ have u checked spam box ?

[mazzo]

Dear ******,

---------- message ----------
From: root <root@slx.xnxx.com>
Date: Tue, Aug 7, 2012 at 10:38 PM

XSLTel has been hacked and Mohammed exposed. Get out of there while you can - *******
--

Hello,

Most of you didn't receive above email. if you didn't please read.
followed by a recent events it seems like we have a serious problems here and we have to clarify some of them :
as you can see our client database dump will be publicly available soon as per that idiot promise.

the database contain following info if you are a client before this date 2011-12-02 07:46:01 then you are in this db dump :
1 - All clients information including (First name, Last name, Email, Company, Phone Number, Address)
2 - Dedicated Servers, VPS Servers and Shared cPanel username and passwords.
3 - All tickets and replies.

Risks :
1 - All clients who were with us before this date 2011-12-02 must change their xsltel.com area password (even the password is hashed still it will be possible to read Welcome emails from WHMCS email logs)
2 - All clients with shared cpanel service must change their cpanel username and password.
3 - Dedicated servers are not affected but they are advised to change their root password.
4 - VPS servers are not affected too.
5 - Reverse Proxy service are not effected either.

What you have to do :
1 - if the password you used in xsltel.com's client area is linked to any other account (email, website, etc...). please change it and don't relay on WHMCS hashing thingy as it will get cracked sooner or later.
2 - if you gave us sensitive info through tickets. please make sure to change them .

All clients won't able to login to their current Client Area. as the password has been changed by us. please use Email Recovery to get a new password.


Highest Regards

now i don't know what to do!!!!!!
this message recieved from mohamed or the hacker?

and how to change cpanel username?
plz help me

[bachbell]

is this his twitter? https://twitter.com/xsltel

[mazzo]

@bachbell
this twitter account get hacked !

[Gambler]

Hm, thats not good. I am with XSLTEL (VPS) since 5 Months, and i am very happy with his Support. Hopefully they not going down.

PS: Why i am still in Probation?

[Storming]

Well finally this "May" be the end to all the attacks which have occurred recently. Well with XSTEL being the ones apparently causing it and the result of them being outed I would guess has caused the recent attack on themselves (Karma is funny at times ).
Though what is a concern is the clients, since I'm sure many are wondering what to do now and if they've got backups etc - Most probably won't have them!

I was affected at some point from the DDOS attacks, which also was against many other providers here (Most are gone now ) even with retaliation from another company there being no backups and all of the clients information public isn't in anyway a good practice since there the innocent ones.

@mazzo
That email looks like a legit one, I can't see why it wouldn't be.

Thanks

[DoctorX]

@mazzo, this message is from XSLTel, I've contacted them.

[Gambler]

And what is now, will the Server shut down & have i take a look for another Provider? And why is XSLTEL Banned here on KWWHunction?

[cvrle77]

XSLTel was banned because he posted his own leaked database with users private data in chatbox.
We take that kind of offense very serious.
If you feel safe with someone who can do something like that, then stay with him. If you don't, then move.
We don't have any informations if he is going to shut down his service, since he is not our member anymore.
Since you know the reason why he's banned, it's your decision what you will do.