Wow, it took them a week to send out this announcement. Only 2 days ago I told them that not only WordPress-files (the constantly told me that it’s for sure a php-issue – which it wasn’t) are affected but also static html-files.
We have detected what appears to be the exploit of a number of
accounts belonging to DreamHost (t d f) customers, and it appears that your
account was one of those affected.We’re still working to determine how this occurred, but it appears
that a 3rd party found a way to obtain the password information
associated with approximately 3,500 separate FTP accounts and has
used that information to append data to the index files of customer
sites using automated scripts (primarily for search engine
optimization purposes).Our records indicate that only roughly 20% of the accounts accessed -
less than 0.15% of the total accounts that we host – actually had
any changes made to them. Most accounts were untouched.
Well I think I’ll change my host even if there is never anything like guaranteed security (t d f)
Update: Dreamhost’s outing.
[tags]chatter[/tags] [tags]hosting[/tags] [tags]security[/tags]
Tags: Chatter, hosting, security
Comments are closed | Permalink • 
• 
