Modus Phishing Hosting Gratis, Contoh Kasus: 65Gb.com

July 8, 2007

Awal Juni lalu gue baca thread di forum yang biasa gue tongkroin tiap harinya tentang adanya hosting gratis dari 65Gb.com dengan fitur-fitur yang cukup menarik lah menurut gue untuk sebuah hosting gratis. Gue sambangin situs dan forumnya, lumayan cukup meyakinkan, akhirnya mencoba juga untuk apply untuk hosting disana.

Akun di 65Gb.com sampe tanggal 24 Juni blom juga gue pake, karna memang cuma kepengen nyoba-nyoba, masih ragu akan keberlangsungan hosting tersebut. Eh, taunya beberapa hari yang lalu udah ngga online lagi! Ngga papa, syukur gue ngga mindahin situs ANoMaLi.net ke hosting 65Gb.com (pikir gue).

Eh taunya ceritanya ngga sampe disitu, setelah baca thread forum Hostistry.com, ternyata admin (Pyro) yang dulunya ngelola 65Gb.com bukan saja menghapus semua file dan database tapi ternyata ngejual data-data pribadi (terutama email) akun-akun hosting di 65Gb.com ke seseorang di Cina dan meraih keuntungan dari penjualan tersebut. Si al**!

…Early on the third of July, an active administrator of the host – under the alias of ‘Pyro’ – gained access to the servers. There was nothing out of the ordinary about this, he had all the passwords and was often known to spend six hours online a day. But today it would be different. His month-long scheming had finally come to an end, his plan would take action.
His first priority, to seal off the servers. Changing the drive passwords would be enough to keep almost anybody away from what he was doing. This he accomplished with ease.
Next step. Pyro had seen profit in selling information. He had established a connection with a Chinese contact that would buy personal information such as e-mail addresses for a good price. Transferring the personal information of all the users, he took the time to delete the existing logs, and create new ones to put in their place, cleverly constructed information to cover his tracks, making it impossible for anyone to discover exactly what he had done.
Finally, to top it all off, Pyro decided to delete all databases and users’ files. Just for the sheer hell of it.

E-volve, the secondary administrator for 65gb took immediate action. On discovering what had happened, he spontaniously logged Pyro’s IP, before it was too late. Later, he would use this…

Modus phishing (pencurian data-data pribadi di i-net) menggunakan kedok hosting gratis memang lebih halus dibanding melalui kontak langsung e-mail, chat. Untuk apply hosting gratis, kita diharuskan mengisi data-data pribadi pada saat registrasi. Setelah akun kita aktif, kita terlanjur percaya dengan hosting tersebut, padahal mereka cuma pengen data-data pribadi kita dan biasanya hosting tersebut cuma bertahan beberapa bulan. Klo udah dirasa cukup dapat banyak akun, admin yang nakal akan menawarkan data-data kita kepada pembeli (biasanya para spammer), klo udah deal, layanan hosting distop dan data-data pribadi kita sudah berpindah tangan.

Gue bener-bener merasa dijebak. Harus ganti semua password nech dan harus siap-siap nech e-mail gue jadi target para spammer. Buat temen-temen klo nyari hosting yach lebih baik yang bayar dengan kredibilitas yang udah bagus dan dapat dipercaya. Jangan terbuai dengan fitur-fitur yang menyamai hosting bayar, karna tetep aja lebih baik pake hosting bayar koq. Terakhir, lebih baik cari tau dulu pengalaman dari para klien mereka yang udah apply.

You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.