Our hosting provider, Dreamhost, had a run of bad luck last week when some of their FTP accounts were compromised. Thankfully, none of them were ours. phew.
That being said, the good folks at Dreamhost have posted a follow up to the incident.
Once we identified the original problem, implemented some immediate security tightening measures, and assessed the scope of the problem, we immediately notified our affected users. The best way to improve security is to share information about flaws like this and we hope that being public about this will help. Though we are a bit ashamed that such a thing has happened to us, keeping it a secret would ultimately cause even more harm. We appreciate all of the information everyone has provided to us regarding this situation.
In the ensuing discussion since we announced this to our users we have seen and heard evidence that similar attacks have been successfully made on several other prominent web hosting companies in the past few weeks as well, some of them much more serious than this attack on us. That makes it look like this may not be an isolated incident. If anyone at other web hosting companies has any additional information, we’d love to talk about it!
It happens to the best of them. We’re glad that the damage was minimal.
[tags]Web Hosting Breach, Privacy, Hacker[/tags]
