In order to gain access to our systems, a hacker used an exploit in an old PHP version that we were using on 000webhost website. Stolen data includes usernames, passwords, email addresses, IP addresses and names.
Although the whole database has been compromised, we are mostly concerned about the 000webhost leaked client information.
What did we do about it?
We have been aware of this breach since 27th of October and our team started to troubleshoot and resolve this issue the same day, immediately after becoming aware of its existense.
In an effort to protect our free users we have temporarily blocked access to systems affected by this security flaw. We have re-enabled access to the affected systems after an investigation and once all security issues had been resolved. Affected systems included our website and our members area. Additionally we have temporarily blocked FTP access as FTP passwords have been dumped as well.
We reset all users passwords in our systems and increased the level of encryption to prevent such issues in the future.
UPDATE #1: NOVEMBER 1, 2015 - We have restored basic access to the members area.
UPDATE #2: NOVEMBER 2, 2015 - We have enabled client support via Facebook page, added many features back to the control panel.
UPDATE #3: NOVEMBER 3, 2015 - We have enabled most of the control panel features. Also, moved forum to secure server and re-enabled it until update to the latest version is ready.
UPDATE #4: NOVEMBER 5, 2015 - We have re-added even more features to the members area, re-enabled website builder, made members area fully mobile friendly!
UPDATE #5: NOVEMBER 12, 2015 - We have re-enabled new client signups back to 000webhost system. Added almost all of the features back.
UPDATE #6: NOVEMBER 17, 2015 - We have re-enabled support system from the members area, clients can now submit tickets directly to us via Helpdesk: https://www.000webhost.com/cpanel-login
What do you need to do?
As all the passwords have been changed to random values, you now need to reset them from the members area.
DO NOT USE YOUR PREVIOUS PASSWORD.
PLEASE ALSO CHANGE YOUR PASSWORDS IF YOU USED THE SAME PASSWORD FOR OTHER SERVICES.
We also recommend that you use Two Factor Authentication (TFA) and a different password for every service whenever possible. We can recommend the Authy authenticator app and the LastPass password manager.
We are sorry
At 000webhost, we are committed to protecting user information and our systems. We are sorry and sincerely apologize we didn't manage to live up to that.
Our top priority remains the same - to provide free quality web hosting for everyone. The 000webhost community is a big family, exploring and using the possibilities of the internet together.
Our leadership team will closely monitor this issue and will do everything possible to earn your trust every day.