light bulb

Did You Know?



Reply
Community Manager Community Manager
Community Manager
Posts: 3,944
Registered: ‎12-16-2013

Code Spaces gets hacked, shuts it's doors

The attackers used a DDOS as cover for a hacking attempt.  They got in and deleted almost everything from the Amazon console before they could be stopped.  Code Spaces is now out of business.

 

Source code hosting provider Code Spaces has suffered the ultimate cloud nightmare, having been effectively forced out of business by the actions of an attacker who managed to gain access to its Amazon EC2 control panel.

 

The devastating incident began on June 17 when Code Spaces – a company that claimed to offer "Rock Solid, Secure and Affordable Svn Hosting, Git Hosting and Project Management" – became the target of a DDoS attack from an unknown party who demanded "a large fee" to make it stop.\

 

Full article here.

 

codespaces.png

Posts: 5,697
Kudos: 4,593
Registered: ‎10-28-2012

Re: Code Spaces gets hacked, shuts it's doors

WOAH.  That is BAD news, not just for Cool Spaces, but for a LOT of companies that host on Amazon... My guess is they could all be currently vulnerable to an attack of this nature?


David, (shorTcircuiT)

      

New to the Community? Register now and start posting!



Helpful Webroot Links:


Download (PC)   Download (Best Buy Subscription)   Submit Trouble Ticket   Account Console   User Guides   



"If you don't learn something new every day, you need to pay more attention. I often get my daily learning here so grab a chair and stay a while!"

WSA-Complete (Beta PC), WSA Mobile (Android), WSA Business Mobile (Android) WSA-Endpoint (PC- Some of the time.....)
Posts: 4,442
Topics: 79
Kudos: 3,270
Registered: ‎11-27-2013

Re: Code Spaces gets hacked, shuts it's doors

[ Edited ]

Code Spaces Hosting Shutting Down After Attacker Deletes All Data

Posted by Unknown Lamer on Wednesday June 18, 2014 @11:30AM 

from the hackers-without-manners dept.

 

An anonymous reader writes

Code Spaces [a code hosting service] has been under DDOS attacks since the beginning of the week, but a few hours ago, the attacker managed to delete all their hosted customer data and most of the backups. They have announced that they are shutting down business.

From the announcement:

An unauthorized person who at this point who is still unknown (All we can say is that we have no reason to think its anyone who is or was employed with Code Spaces) had gained access to our Amazon EC2 control panel and had left a number of messages for us to contact them using a Hotmail address. Reaching out to the address started a chain of events that revolved around the person trying to extort a large fee in order to resolve the DDOS. 

 

At this point we took action to take control back of our panel by changing passwords, however the intruder had prepared for this and had already created a number of backup logins to the panel and upon seeing us make the attempted recovery of the account he proceeded to randomly delete artifacts from the panel.

 

Another similiar article as follows:

 

http://it.slashdot.org/story/14/06/18/1513252/code-spaces-hosting-shutting-down-after-attacker-delet...

Sherry

   

Helpful Webroot Links:


Download (PC) | Download (Best Buy Subscription) | Submit Trouble Ticket | Account Console | User Guides |

BrightCloud URL lookup

Register and Introduce yourself to The Community!


Mac / Yosemite(10.10.1), IPads, PCs,W7Pro & W 8.1 R Pro. Windows 7 Pro on Lenovo & W/Vista Ultimate on Gateway Laptop.
(WSAC 5 PC,WSA Business)W/10 Preview
Posts: 1,485
Topics: 758
Kudos: 1,306
Registered: ‎10-14-2013

Hacker puts 'full redundancy' code-hosting firm out of business

CodeSpaces.com shut down after a hacker gained access to its Amazon EC2 account and deleted most data, including backups

 A code-hosting and project management services provider was forced to shut down operations indefinitely after a hacker broke into its cloud infrastructure and deleted customer data, including most of the company's backups.

The customers of CodeSpaces.com, run by a company in Wayne, New Jersey, called AbleBots, were informed Wednesday that their data might have been permanently lost following the compromise of the company's account on Amazon's Elastic Compute Cloud (EC2).

The devastating security breach happened over a span of 12 hours and initially started with a distributed denial-of-service attack followed by an attempt to extort money from the company.

The attacker also gained access to Cloud Spaces' control panel on EC2 and deleted the company's digital assets from Amazon's infrastructure when the company tried to regain control of its account.

"We finally managed to get our panel access back but not before he had removed all EBS [Amazon Elastic Block Store] snapshots, S3 [Amazon Simple Storage Service] buckets, all AMI's [Amazon Machine Images], some EBS instances and several machine instances," Cloud Spaces said in anannouncement on its website. "In summary, most of our data, backups, machine configurations and offsite backups were either partially or completely deleted."

 

Full Article

 

SigSEA.png original (Копировать).png


Posts: 353
Topics: 22
Kudos: 136
Registered: ‎08-29-2012

Re: Hacker puts 'full redundancy' code-hosting firm out of business

This is why you go with a managed hosting provider like inetu for mission critical stuff like source code hosting. Not "the wal mart of hosting"

Sr. Community Guide

Posts: 5,697
Kudos: 4,593
Registered: ‎10-28-2012

Re: Hacker puts 'full redundancy' code-hosting firm out of business

LOL, OUCH!

 

 :smileyhappy:


David, (shorTcircuiT)

      

New to the Community? Register now and start posting!



Helpful Webroot Links:


Download (PC)   Download (Best Buy Subscription)   Submit Trouble Ticket   Account Console   User Guides   



"If you don't learn something new every day, you need to pay more attention. I often get my daily learning here so grab a chair and stay a while!"

WSA-Complete (Beta PC), WSA Mobile (Android), WSA Business Mobile (Android) WSA-Endpoint (PC- Some of the time.....)