1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Use 000WebHost? Its been hacked

Discussion in 'BlackHat Lounge' started by fatboy, Oct 29, 2015.

  1. fatboy

    fatboy Elite Member

    Joined:
    Aug 13, 2008
    Messages:
    1,618
    Likes Received:
    3,232
    Occupation:
    Retired
    Location:
    Old Peoples Home
    Wasn't sure where this would get the best audience but if you are a user of 000webhost then its time to get your shit together, change passwords and/or run for the hills.

    They have been hacked and the hackers have all details for all users - the data is currently being sold online (one I saw was priced at 1.5BTC!)

    Be safe out there and if you have used the same email / password elsewhere time to change!
     
  2. asap1

    asap1 BANNED BANNED

    Joined:
    Mar 25, 2013
    Messages:
    4,961
    Likes Received:
    3,185
    Never heard of them before but that sucks.
     
  3. godspeed007

    godspeed007 Jr. VIP Jr. VIP

    Joined:
    Jan 10, 2013
    Messages:
    740
    Likes Received:
    274
    Like seriously? 000webhost has been very popular in free hosting since years and it is just coz of their amazing marketing tactics but the fact is the quality of their service really sucks.

     
  4. mickyfu

    mickyfu Jr. VIP Jr. VIP

    Joined:
    Dec 14, 2011
    Messages:
    7,517
    Likes Received:
    21,484
    Occupation:
    King Of Crypto C
    Location:
    Solihull Young Offenders
    Likeliness is if you are using 000webhost, you probably do not have anything worth worrying about losing.
     
    • Thanks Thanks x 3
  5. fatboy

    fatboy Elite Member

    Joined:
    Aug 13, 2008
    Messages:
    1,618
    Likes Received:
    3,232
    Occupation:
    Retired
    Location:
    Old Peoples Home
    They are well known for freebie crap hosting :)

    Marketing only second to Dreamhost :D

    Very true, but 13 million accounts have been sprung and you can guarantee that about 10% of people (low end estimate) use the same email / password elsewhere so whoever has that dump has a good starting point for other places.
     
    • Thanks Thanks x 2
  6. HoNeYBiRD

    HoNeYBiRD Jr. VIP Jr. VIP

    Joined:
    May 1, 2009
    Messages:
    7,502
    Likes Received:
    8,427
    Gender:
    Male
    Occupation:
    Geographer, Tourism Manager
    Location:
    Ghosted
    or to Godaddy and their banned NFL commercials :)

    especially when you use the same password for the email address too which was used on the hacked site, so the hackers don't even need to guess the sites where it might be used, they will know precisely and even if you use a different password on the sites, it's either sent to the address lol or you can just ask for a password reminder and it will be emailed right away (which truly surprises me that even paypal will email a new password without asking anything, not even a friggin security question)

    on a side note, there's a thread about this already :)
    http://www.blackhatworld.com/blackh...ebhost-hacked-13-5-million-user-accounts.html

    btw mpgh.net (multiplayer game hacks & cheats forum) was also hacked with 3.1 million users not too long ago and i just found this out because i used the tool posted in the other thread to check my throwaway emails, if they were compromised or not, 7 of them were caught in this 000webhost hack, well, basically one address, but with the period insert gmail trick lol, one of those was also caught early in the big 2013 Adobe hack and another one in the mpgh.net hack recently, my mains are safe though
     
  7. ja1myn

    ja1myn Senior Member

    Joined:
    Feb 3, 2012
    Messages:
    817
    Likes Received:
    306
    Tried to change my password and it gives me an error page. Oh well, I think I used it for a day when I was broke several years back. Forgot it even existed until I got an email from haveibeenpwned.com.