RDP security issue

[viruz99]

A few days ago , I received an email from Rapidshare support that my account email was changed . At first i just thought it was a phishing/fake email as i logged on to my account and everythign seemed fined . Only 1-2 days later when i login to my RDP i realised ''Holy Shit'' !!! Email change originated from same Ip . I immediately change my login details everywhere and tried to find more info how that happened .

My first guess was it was done by one of their staff as they have access to the RDPs but even then its not like i leave my login details in a .txt file on the desktop .

Second ( most probable ) - The servers are keylogged which is highly likely since they do not have any security installed ( AV / AntiSpyware ) but even then admin access would be required to install it .



Already PM'd the Ip to Jason if any Mods requires it - PM me

I completely stopped using both my services there till i found out how that happened and not to risk using my new details in case they get phished again - All i was told is that email belongs to one of their clients and he doesn't have admin access

If anyone has any Idea who that guy is or how he got those details - PM me . his email : mukesh123khan@gmail.com


* At all buywindowsvps clients - I recommend you change all your filehosts or any other login details you used on the RDPs as the staff there have no idea yet how that happened ..........

viruz99 Reviewed by viruz99 on 28th Jun 2011. RDP security issue A few days ago , I received an email from Rapidshare support that my account email was changed . At first i just thought it was a phishing/fake email as i logged on to my account and everythign seemed fined . Only 1-2 days later when i login to my RDP i realised ''Holy Shit'' !!! Email change originated from same Ip . I immediately change my login details everywhere and tried to find more info how that happened . My first guess was it was done by one of their staff as they have access to Rating: 5

[huno]

I never log in personal acc in RDPs, i use only ftp upload or zoom uploader.

edit: But I agree with you, should have some sort of AV or other security.

[viruz99]

I never logged into any accounts via browser - same as you : IDM + FTP upload ( firezilla etc... )

[Glenn]

Any Mods online Wish to check our servers for Security Holes ?
Willing to offer Admin Access

[l0calh0st]

What does this have to do with KnowinServers?

[Hawk]

I can confirm that the members of staff at BuyWindowsRDP do not keylog their customers. Glen provided me with the administrator account details for the RDP, I've looked everywhere but I haven't found anything. Jason can also confirm this as Glen said he'll provide him with the administrator details.

Thanks

[Glenn]

I never logged into any accounts via browser - same as you : IDM + FTP upload ( firezilla etc... )

Well,
If you didnt login to your rapidshare account from the Browser,
then how did your account get Phished ?

[Chutad]

@l0cal, BuyWindowsVPS is under KnowinServer's network only. And Glenn finances it.

[viruz99]

Depends when you checked - i contacted him about this a few days ago -

Anyway if there is no security issue - how did that guy manage to change my account email adress or even get the login details ?

[Glenn]

Depends when you checked - i contacted him about this a few days ago -

Anyway if there is no security issue - how did that guy manage to change my account email adress or even get the login details ?

How Would We know,
You have the email address of the Person who phished your account,
Please contact him and Ask him how it Managed to get access to your Rapidshare account.

This is the Best Solution for you.

Cheers