Nos ha llegado un correo desde Heztner avisando de un acceso no controlado a sus sistemas de administración.

 

 

El texto del correo es bastante escueto:

 

Dear Client,

We were informed yesterday, Wednesday 5 October, about an improper access to our internal system.

As far as we can presently reconstruct, the attackers could have been able to access internal customer data on Hetzner Online's administrative systems.

As soon as we were made aware of this, we immediately began to reconstruct the incident.

To our present knowledge we have no information regarding data abuse from customers.

Unfortunately, it is not possible for us to exclude this possibility completely and we would

therefore ask that you change all passwords on your Hetzner system immediately as a precaution.

We recommend that you do not use identical passwords for multiple systems.

We make every effort to ensure that your customer data is in safe hands. Data security is a

very high priority for us. However, it is unfortunately not possible to completely exclude

incidents such as this from happening.

To ensure complete and transparent clarification, we shall shortly be reporting this

incident to the regulatory authorities.

The current status of the investigation may be seen on hetzner-status.de

We thank you for your understanding and for placing your trust in us.

 

Nosotros por suerte hace 5 años que no trabajamos con ellos pero debereis de tomar las medidas correspondientes todos los que tengais servidores y alojamientos con ellos.

Esperamos que se expliquen un poco mejor y especifiquen exactamente que datos han sido sustraidos y el alcance global de dicho ataque.

 

Podeis seguir el estado del proceso en una web que han habilitado http://hetzner-status.de/