Over the past weekend NaviSite (www.navisite.com) was the target of hackers, leading some servers to face as many as eight hours of downtime beginning Friday night, and their negligence to respond to the threats caused additional downtime, according to customer reports.
Paul Schoolfield, a partner at ITX Design (www.itxdesign.com), a web hosting provider based in Fredericksburg, Virginia said NaviSite's support team ignored customers for about 48 hours until Sunday night, when they were forced to shutdown SSH access across the entire network for more than 24 hours to address the vulnerability. He went on to note that even by Tuesday, some servers were still either down or at least without access.
The weekend incident brought up memories of the company's five-day outage in November 2007, due to a botched migration of then newly acquired Baltimore hosting provider Alabanza (www.alabanza.com). Roughly 3,500 ITX Design clients experienced downtime because of NaviSite's outage, and had been in the process of migrating the last of its clients to a new service provider when the Friday outage hit.
"The hacker gained access by hacking one of their primary support servers which then allowed them to gain netop/root access to any of their clients servers using the Alabanza platform," Schoolfield said. "The hackers literally had the ability to root into any of the 400 to 600 servers. Additionally, their failure to listen and act on the warnings and logs sent Friday allowed the hacker to stay within the network for an additional 48 hours."
NaviSite had not responded to email or voice messages by the time of this article's publication.
No responsibility can be taken for the content of external Internet sites.
Return to hosting news headlines
View Hosting News Archive