Not even a whole week after Zappos was hacked, our favourite hosting service, DreamHost, has also had a breach.
They say there’s “no evidence that customer passwords were taken”, but they”re pushing out password changes to everyone just to be safe. In addition, you should change any of your other passwords just to be safe — that is, if they’re at all similar to your DreamHost password. Just as we did during the Zappos hack, we highly recommend you set up a password manager like LastPass, and use it to help you audit your passwords. Remember, the only secure password is the one you can’t remember. Hit the link to read more.
Changing Shell/FTP Passwords due to Security Issue [DreamHost Blog via Hacker News]
Ginny
Saturday, January 21, 2012 at 10:35 AMTheir control panel is also down for some users (like me) and while you can access the site via ftp, you can’t pull it up in a browser. Some users are having the opposite problem whereby their ftp access is blocked but their site is still running. This looks to be a MUCH bigger problem than passwords.
Logan Booker
Saturday, January 21, 2012 at 1:52 PMHave a Dreamhost account myself and can’t access the panel either. Very keen to get in, obviously.
Max
Saturday, January 21, 2012 at 10:53 AMI’m pretty annoyed that I had to find out about it here. They’ve known about it for at least 6.5 hours (that’s when the blog post was posted), and still haven’t sent out a mass email.
Karloscopy
Saturday, January 21, 2012 at 4:50 PMForget the cloud, it’s a big balloon and all it takes is a little prick to stuff it up ;)
Annie
Sunday, January 22, 2012 at 1:09 PMLearned about it on LH too. Still no email from Dreamhost about it!!
Logan Booker
Sunday, January 22, 2012 at 1:52 PMFinally got my email this morning. I should point out that this affects shell/FTP passwords only, not your panel.
Still a big deal, obviously.
Oleg
Tuesday, January 24, 2012 at 10:14 AMIn defence of DH, I had an email from them about this on Saturday night.