- Impact
- 4
I've received an email from WHMCS detailing that they were a victim of social engineering. Details have been accessed. Here is a full quote of the message.
If your WHMCS password is the same for any of your other passwords, then I'd suggest changing those as well. For example:
- cPanel / WHM
- PayPal
- E-mail
- Your own WHMCS login
Unfortunately, credit card details have also been accessed. So cancelling your card would be necessary. Unless you paid with credit card via PayPal.
There's probably going to be more information as it comes along.
- WHMCS Tweets have been taken over by the hackers (though they were social engineered, hacker would be best).
Example:
They've posted publicly:
- Complete Database
- Complete Root Files
- Complete cPanel Files
- Whmcs.com Whole Cpanel Release
Further edit:
They may or may not have reissued licenses for your WHMCS install. They have for some.
WHMCS team will provide updates via this thread in their forums:
http://forum.whmcs.com/showthread.php?t=47644
Unfortunately today we were the victim of a malicious social engineering attack which has resulted in our server being accessed, and our database being compromised.
To clarify, this was no hack of the WHMCS software itself, nor a hack of our server. It was through social engineering that the login details were obtained.
As a result of this, we recommend that everybody change any passwords that they have ever used for our client area, or provided via support ticket to us, immediately.
Regrettably as this was our billing system database, if you pay us by credit card (excluding PayPal) then your card details may also be at risk.
This is just a very brief email to alert you of the situation, as we are currently working very hard to ensure everything is back online & functioning correctly, and I will be writing to you again shortly.
We would like to offer our sincere apologies for any inconvenience caused. We appreciate your support, now more than ever in this challenging time.
----
WHMCS Limited
www.whmcs.com
If your WHMCS password is the same for any of your other passwords, then I'd suggest changing those as well. For example:
- cPanel / WHM
- PayPal
- Your own WHMCS login
Unfortunately, credit card details have also been accessed. So cancelling your card would be necessary. Unless you paid with credit card via PayPal.
There's probably going to be more information as it comes along.
- WHMCS Tweets have been taken over by the hackers (though they were social engineered, hacker would be best).
Example:
Database and files of http://whmcs.com #hacked and #leaked by #UGNazi http://pastebin.com/UJCi72FS @UG @ThaCosmo @JoshTheGod @le4ky #UGNazi
They've posted publicly:
- Complete Database
- Complete Root Files
- Complete cPanel Files
- Whmcs.com Whole Cpanel Release
Further edit:
They may or may not have reissued licenses for your WHMCS install. They have for some.
WHMCS team will provide updates via this thread in their forums:
http://forum.whmcs.com/showthread.php?t=47644
Last edited:
