Just a quick warning to any customers of NFOServers.com – it seems that yesterday they had experienced a breach in one of their internal databases which stored passwords for VPS’s, dedicated servers, hosting accounts, FTP accounts for gaming servers, and hashed and salted control panel logins. Those of you who have an account with NFOServers.com would be wise to change your passwords.
This news was first discovered by sewi over at WebHostingTalk who got the following message on his VPS account:
Investigating evidence of limited intrusion today, we determined that one of our internal databases might have been accessed by an unauthorized user.
This database contains default passwords for VDSes and dedicated servers, passwords for webhosting accounts, and FTP passwords for game servers, as well as hashed control panel login passwords.
John, president of NFOServers.com, confirmed today that they are still working on investigating what exactly was accessed. If any further news comes from this I will be sure to update you all. However in the meantime use this as an opportunity to ensure that you’re utilizing secure passwords on all your accounts.