Ninjastic
PostEdited versionsQuotes to this post
Post
Topic
Board Service Announcements
Merits 2 from 1 user
Re: [ANN] ChipMixer.com - Bitcoin mixer / Bitcoin tumbler - mixing reinvented
by
james3441
on 07/10/2021, 00:31:41 UTC
⭐ Merited by hugeblack (2)
Quote from: ChipMixer on September 26, 2021, 12:11:00 AM
Attacker gained access to our .com server IP at 2021-09-23. They used it to create two SSL certificate - one with Cloudflare (https://crt.sh/?id=5270080144) - second with Lets Encrypt (https://crt.sh/?id=5281011754).

How is this even possible? Do you host this on VPS?

Buy a dedicated server with access to KVM via iDrac or ILO then do system installation with full disk encryption. Change all default passwords.
There's literally 0 ways how you can get access to server content this way, assuming all applications running on server and your own administrative credentials are save.

Only thing attacker can do is try to social enginner hosting company to redirect IP addresses to different machines.