zdnet.com

DanWin1210.me hacked, Email still in tact https://www.zdnet.com/article/popular-dark-web-hosting-provider-got-hacked-6500-sites-down/ https://danwin1210.me/ > On November 15th around 10:06 PM UTC the hosting server was logged in to via phpmyadmin and adminer with the correct hosting management password and deleted all accounts. Noteworthy, also the account "root" has been deleted, which was injected into the database at 10:53 PM UTC and deleted at 12:50 AM, shortly after remaining databases from the chat, link list and hit counter got deleted. Unfortunately it is not possible to find the root cause by log analysis as on 14th at 5:33 the database had already been accessed with this user and it is unknown for how long the hackers may have had access to the database due to rotating logs frequently. However the database password was last updated on October 20th, which indicates that the hack must have happened within the last month. To this day around 6500 Hidden Services were hosted on the server. There is no way to recover from this breach, all data is gone. > > The scripts are open source on github and anyone is welcome to take it as a base to build a new hosting service or help find the vulnerability. > > If you are the hacker or have any helpful information about how this could have been done, please get in contact with me > > Investigation is continuing. **Not affected are the mail and XMPP service**, as well as the static content and the short-link service, which were hosted on my Raspberry Pi 3. The chat is restored with a fresh installation and other services will be back up soon. I expect to get the hosting back up in December (NOT on December 1st). In the meantime, http://fhostingineiwjg6cppciac2bemu42nwsupvvisihnczinok362qfrqd.onion is a good alternative. > > To stay updated about the development, check here: https://github.com/DanWin/hosting

DanWin1210.me hacked, Email still in tact https://www.zdnet.com/article/popular-dark-web-hosting-provider-got-hacked-6500-sites-down/ https://danwin1210.me/ > On November 15th around 10:06 PM UTC the hosting server was logged in to via phpmyadmin and adminer with the correct hosting management password and deleted all accounts. Noteworthy, also the account "root" has been deleted, which was injected into the database at 10:53 PM UTC and deleted at 12:50 AM, shortly after remaining databases from the chat, link list and hit counter got deleted. Unfortunately it is not possible to find the root cause by log analysis as on 14th at 5:33 the database had already been accessed with this user and it is unknown for how long the hackers may have had access to the database due to rotating logs frequently. However the database password was last updated on October 20th, which indicates that the hack must have happened within the last month. To this day around 6500 Hidden Services were hosted on the server. There is no way to recover from this breach, all data is gone. > > The scripts are open source on github and anyone is welcome to take it as a base to build a new hosting service or help find the vulnerability. > > If you are the hacker or have any helpful information about how this could have been done, please get in contact with me > > Investigation is continuing. **Not affected are the mail and XMPP service**, as well as the static content and the short-link service, which were hosted on my Raspberry Pi 3. The chat is restored with a fresh installation and other services will be back up soon. I expect to get the hosting back up in December (NOT on December 1st). In the meantime, http://fhostingineiwjg6cppciac2bemu42nwsupvvisihnczinok362qfrqd.onion is a good alternative. > > To stay updated about the development, check here: https://github.com/DanWin/hosting

Dark Mail debut will open door for Lavabit's return, says Ladar Levison Source: ['Dark mail' debut will open door for Lavabit's return, says Ladar Levison](http://www.zdnet.com/article/dark-mail-debut-to-open-door-for-lavabit-return-ladar-levison/) >The end-to-end encrypted protocol that secures email may land as soon as this month. Zack Whittaker > >By Zack Whittaker for Zero Day | November 2, 2015 -- 17:34 GMT (17:34 GMT) > > Lavabit, the privacy-centric email provider Edward Snowden reportedly used, is set to make a comeback. > >Ladar Levison made headlines two years ago when he unexpectedly shut down the encrypted email service that he built from the ground up over a decade, after federal agents demanded he turn over his master encryption keys. The feds were likely after one user -- thought to be Snowden, the former NSA contractor turned whistleblower -- but this has [never been formally confirmed](http://www.wired.com/2013/10/lavabit_unsealed/) as the case remains under seal. Concerned that the feds would go beyond the scope of the warrant, he shut down the site to prevent them "conducting surveillance on everyone," he said. > >For two years, Levison has been working on his latest endeavor -- "dark mail" -- which aims to reinvent email for the modern age, making it encrypted and easy-to-use. > >"It's moving," Levison explained in a late-July phone call, "but slower than what I'd like." > >For the past few months, he and a group of developers have been working full-steam on bringing dark mail to life. > >Dark mail aims to reinvent traditional email by making it private, secure, and surveillance-proof. Levison and his development team realized early on that the only way to do this was to rewrite the software and protocols from the ground up, allowing messages to be end-to-end encrypted on multiple levels to mitigate any potential data breach from an attacker. The final product, known as the Dark Internet Mail Environment (DIME), will plug in to existing email se

Dark Mail debut will open door for Lavabit's return, says Ladar Levison Source: ['Dark mail' debut will open door for Lavabit's return, says Ladar Levison](http://www.zdnet.com/article/dark-mail-debut-to-open-door-for-lavabit-return-ladar-levison/) >The end-to-end encrypted protocol that secures email may land as soon as this month. Zack Whittaker > >By Zack Whittaker for Zero Day | November 2, 2015 -- 17:34 GMT (17:34 GMT) > > Lavabit, the privacy-centric email provider Edward Snowden reportedly used, is set to make a comeback. > >Ladar Levison made headlines two years ago when he unexpectedly shut down the encrypted email service that he built from the ground up over a decade, after federal agents demanded he turn over his master encryption keys. The feds were likely after one user -- thought to be Snowden, the former NSA contractor turned whistleblower -- but this has [never been formally confirmed](http://www.wired.com/2013/10/lavabit_unsealed/) as the case remains under seal. Concerned that the feds would go beyond the scope of the warrant, he shut down the site to prevent them "conducting surveillance on everyone," he said. > >For two years, Levison has been working on his latest endeavor -- "dark mail" -- which aims to reinvent email for the modern age, making it encrypted and easy-to-use. > >"It's moving," Levison explained in a late-July phone call, "but slower than what I'd like." > >For the past few months, he and a group of developers have been working full-steam on bringing dark mail to life. > >Dark mail aims to reinvent traditional email by making it private, secure, and surveillance-proof. Levison and his development team realized early on that the only way to do this was to rewrite the software and protocols from the ground up, allowing messages to be end-to-end encrypted on multiple levels to mitigate any potential data breach from an attacker. The final product, known as the Dark Internet Mail Environment (DIME), will plug in to existing email se