API tools faq
paste
Advertisement
RexMundi

Rex Mundi Hoststar.ch Hack

RexMundi
Jun 29th, 2013
5,531
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 8.44 KB | None | 0 0
raw download clone embed print report
  1. Twitter: RexMundi_Anon
  2. Email: rexmundi@tormail.org
  3.  
  4. Our name is Rex Mundi. We previously hacked the Web servers of various European and American companies.
  5.  
  6. Last week, we hacked into the back-end server of Swiss Web hosting company Hoststar (hoststar.ch).
  7.  
  8. We gained access to their customer database as well as the various login/passes used by their customers to connect to the control panels.
  9.  
  10. Unfortunately, Hoststar doesn't seem to particularly value their customers' privacy since they refused to pay us in exchange for the non-disclosure of this data.
  11.  
  12. Therefore, we will publish their customers' data on the Internet on July 3rd unless someone ( a competitor, a mischievous individual ) steps in and decides to purchase this data from us. You can send your offers to rexmundi@tormail.org
  13.  
  14. Here is some of the sample data we collected from the Hoststar servers:
  15.  
  16. SAMPLE DATA:
  17.  
  18. Databases:
  19. admintool_dev
  20. confixx
  21. horde
  22. information_schema
  23. mysql
  24. usr_teb6_5
  25. usr_web1_1
  26. usr_web1_10
  27. usr_web1_12
  28. usr_web1_13
  29. usr_web1_14
  30. usr_web1_15
  31. usr_web1_2
  32. usr_web1_3
  33. usr_web1_4
  34. usr_web1_5
  35. usr_web1_6
  36. usr_web1_7
  37. usr_web1_8
  38. usr_web1_9
  39. usr_web3_1
  40. usr_web4_1
  41. usr_web6_1
  42. usr_web6_2
  43. usr_web6_3
  44. usr_web6_4
  45. usr_web6_6
  46. usr_web6_7
  47. usr_web6_8
  48. usr_web7_1
  49. -----------------------
  50. DB Users:
  51. 'web4'@'127.0.0.1'
  52. 'cja'@'%'
  53. 'confixx'@'localhost'
  54. 'horde'@'%'
  55. 'horde'@'localhost'
  56. 'pma'@'localhost'
  57. 'reverse'@'localhost'
  58. 'root'@'127.0.0.1'
  59. 'root'@'localhost'
  60. 'root'@'tuxapps'
  61. 'web1'@'%'
  62. 'web1'@'localhost'
  63. 'web3'@'127.0.0.1'
  64. 'web4'@'localhost'
  65. 'web6'@'%'
  66. 'web6'@'localhost'
  67. 'web7'@'127.0.0.1'
  68. 'web7'@'localhost'
  69. -----------------------
  70. List of tables in the admindev_tool DB:
  71.  
  72. +---------------------------------+
  73. | `tbl^payback_open_type` |
  74. | `tbl_verre`hnung_zusatz` |
  75. | countries |
  76. | hack_helper |
  77. | marketing |
  78. | tbl_abotyp |
  79. | tbl_aktionen |
  80. | tbl_anrede |
  81. | tbl_apipool |
  82. | tbl_ausnahmen |
  83. | tbl_bestellop |
  84. | tbl_bestellung |
  85. | tbl_bestellung_ssl |
  86. | tbl_bestellung_zusatzdienst |
  87. | tbl_boerse |
  88. | tbl_countries |
  89. | tbl_domain |
  90. | tbl_domaintransfers |
  91. | tbl_email_abo |
  92. | tbl_email_diverses |
  93. | tbl_email_domainmonitoring |
  94. | tbl_email_mahnung_abo |
  95. | tbl_email_mahnung_ssl |
  96. | tbl_email_mahnung_xu@atzdom |
  97. | tbl_email_rueckerstattung |
  98. | tbl_email_ssl |
  99. | tbl_email_zugang |
  100. | tbl_email_zusatzdienst |
  101. | tbl_email_zusatzdomain |
  102. | tbl_kondition |
  103. | tbl_kostenpfl_domain |
  104. | tbl_kunde |
  105. | tbl_kundendaten_aenderungen |
  106. | tbl_mwst |
  107. | tbl_newslette |
  108. | tbl_ordermon |
  109. | tbl_payback |
  110. | tbl_payback_payment |
  111. | tbl_payback_reason |
  112. | tbl_payback_reason_second |
  113. | tbl_payback_type |
  114. | tbl_preise |
  115. | tbl_protokoll |
  116. | tbl_protokoll_watchpoints |
  117. | tbl_rechnungsdaten |
  118. | tbl_registrar |
  119. | tbl_seitenmonitoring |
  120. | tbl_server |
  121. | tbl_server_ip |
  122. | tbl_server_resetlog |
  123. | tbl_server_resetlog_grund |
  124. | tbl_server_resetlog_mitarbeiter |
  125. | tbl_servermonitoring |
  126. | tbl_sperrgrund |
  127. | tbl_sperrung |
  128. | tbl_ssl |
  129. | tbl_status_domain |
  130. | tbl_status_domainaction |
  131. | tbl_status_email |
  132. | tbl_status_installation |
  133. | tbl_status_rechnung |
  134. | tbl_temp |
  135. | tbl_tld |
  136. | tbl_tld_waehrung |
  137. | tbl_tldnewsletter |
  138. | tbl_umfrage_antworten |
  139. | tbl_umfrage_fragen |
  140. | tbl_umfrage_ip |
  141. | tbl_umfrage_teilnehmer |
  142. | tbl_verrechnung |
  143. | tbl_verrechnung_automatisierung |
  144. | tbl_verrechnung_ssl |
  145. | tbl_whois_relay |
  146. | tbl_whois_results |
  147. | tbl_zahlungsart |
  148. | tbl_zusatzdienste |
  149. | tbl_zusatzdomain |
  150. +---------------------------------+
  151.  
  152. --------------
  153.  
  154. Sample data from tbl_payback (bank, bank_nr, iban):
  155.  
  156. Migrosbank, 16970103607, CH73 0840 1016 9701 0360 7
  157. Schwyzer Kantonalbank, 404896-0630, CH9700777004048960630
  158. CREDIT SUISSE, 229701-60, CH82 0483 5022 9701 6000 0
  159. Berner Kantonalbank, 42 3760 0344 2, CH14 0079 0042 3760 0344 2
  160. St. Galler Kantonalbank, 0204.2577.2000, CH81 0078 1020 4257 7200 0
  161. UBS AG, 202-Q8724642.0,
  162. ZKB, 1155-0208.379, CH6000700115500208379
  163. Credit Suisse, 111084-41, CH76 0483 5011 1084 4100 0
  164. Bank CIC Swiss, 64681.1, CH5308710000000646811
  165. UBS AG, 230-409409.40R,
  166.  
  167. -------------
  168.  
  169. Sample customer data:
  170.  
  171.  
  172. 420/476/ d77ea3334bceb132a884e4490e8d9454 MD5: 655118
  173.  
  174. First name Emanuel
  175. Last name Kunz
  176. Firm
  177. Email emanuel.kunz@info24.ch (IMPORTANT: This contact address is used for
  178. informative messages and invoicing!)
  179. Alternative email (this address can be given optionally and serves as a
  180. safety backup for making contact.)
  181. Address Tösswiesenstrasse 35
  182. Postcode / Zip code 8413
  183. Location Neftenbach
  184. Country Switzerland
  185. Language German
  186. Telephone 1 078 748 30 36
  187. Telephone 2 (This number can be given optionally.)
  188. Fax
  189.  
  190.  
  191. 418/474/ 38c9f504869ce3c57260bfde6723323b MD5: 893410
  192.  
  193. Title Herr
  194. First name Murali
  195. Last name Sitaraman
  196. Firm
  197. Email murali@sitaraman.ch (IMPORTANT: This contact address is used for
  198. informative messages and invoicing!)
  199. Alternative email (this address can be given optionally and serves as a
  200. safety backup for making contact.)
  201. Address Eigerplatz 10
  202. Postcode / Zip code 3007
  203. Location Bern
  204. Country Switzerland
  205. Language German
  206. Telephone 1 +41 79 329 37 45
  207. Telephone 2 (This number can be given optionally.)
  208. Fax
  209.  
  210.  
  211. 398/454/ 4ebb7c232cc8d69b1d435a6e679d470a MD5: jazzyhost
  212.  
  213. Title Herr
  214. First name Philippe
  215. Last name Mooser
  216. Firm
  217. Email info@thefirst.ch (IMPORTANT: This contact address is used for
  218. informative messages and invoicing!)
  219. Alternative email (this address can be given optionally and serves as a
  220. safety backup for making contact.)
  221. Address Wiestibodenweg 19
  222. Postcode / Zip code 3920
  223. Location Zermatt
  224. Country Switzerland
  225. Language German
  226. Telephone 1 0792252571
  227. Telephone 2 (This number can be given optionally.)
  228. Fax
  229.  
  230. 69847/73337/ d4bc5e475905fd6b54c6e821bedf76aa
  231.  
  232. Title Firma
  233. First name Euridice
  234. Last name Imfeld-Maclean
  235. Firm Solostyle Dance
  236. Email euridicemaclean@hotmail.com (IMPORTANT: This contact address is
  237. used for informative messages and invoicing!)
  238. Alternative email e.Jmfeld@gmail.com (this address can be given
  239. optionally and serves as a safety backup for making contact.)
  240. Address St. Niklausenstrasse 102
  241. Postcode / Zip code 6047
  242. Location Kastanienbaum
  243. Country Switzerland
  244. Language German
  245. Telephone 1 079 2099313
  246. Telephone 2 079 2099313 (This number can be given optionally.)
  247. Fax
  248.  
  249. Sample customer invoice:
  250.  
  251. Solostyle Dance
  252. Euridice Imfeld−Maclean
  253. St. Niklausenstrasse 102
  254. 6047 Kastanienbaum
  255. Fraubrunnen, 21. Juni 2013
  256. Rechnungsdatum: 21.06.2013
  257. Ihre Bestellung vom: 21.06.2013
  258. UID Nummer: CHE−112.417.413 MWST
  259. Seite 1/1
  260. Rechnung: 990073337
  261. Sehr geehrte Damen und Herren
  262. Diese Rechnung wurde von Ihnen am 24.06.2013 einbezahlt und gilt daher nur
  263. als Beleg.
  264. Auftragsnummer
  265. Bezeichnung
  266. Anzahl
  267. Einzelpreis
  268. Betrag CHF
  269. 990073337
  270. Webhosting:
  271. StarEntry
  272. 12
  273. 5.90
  274. 70.80
  275. 30'000 MB, 20 Domains
  276. Domainname:
  277. solostyledance.ch
  278. 0.00
  279. Aboperiode:
  280. 21.06.2013 − 20.06.2014
  281. Zwischensumme inkl. MWSt.
  282. 70.80
  283. Zwischensumme exkl. MWSt.
  284. 65.55
  285. MWSt. 8%
  286. 5.25
  287. Rechnungstotal inkl. MWSt. in CHF
  288. 70.80
  289. Zahlungskondition: Diese Rechnung wurde bereits bezahlt.
  290. Besten Dank für Ihren Auftrag
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!