DirectAdmin account hacked
Resolved
Nov 22 at 07:43pm EST
The issue has been fixed and all websites are back up.
Affected services
Portal
Homepage
DangoAPI
DangoID
Updated
Nov 21 at 06:52pm EST
We have restored a backup of our files which have restored our websites to the previous state - everything is back up. We are still investigating an issue with Node.js not appearing in DirectAdmin. All of our webapp environments have been reset to production. If you have any beta version webapps that we have published for testing that are dependent on a development environment, they will have bugs. We are working on getting this fixed.
Affected services
Portal
Homepage
DangoAPI
DangoID
Updated
Nov 21 at 04:50pm EST
As we purge all files from the attack, websites will be down.
Affected services
Homepage
Updated
Nov 21 at 02:03pm EST
Portal and DangoID recovered.
Affected services
Portal
DangoID
Updated
Nov 21 at 02:00pm EST
We have contacted support and our providers have restored some sites.
Affected services
Portal
DangoAPI
DangoID
Updated
Nov 21 at 03:28am EST
DangoAPI went down.
Affected services
DangoAPI
Updated
Nov 21 at 03:22am EST
DangoID went down.
Affected services
DangoID
Created
Nov 21 at 03:11am EST
Someone has gone into our account and placed files everywhere, ultimately taking down all our domains using Node.js. This affects only our main websites, including DangoAPI and DangoID, but not client websites.
Affected services
Portal
Homepage
DangoAPI
DangoID