Feeds

Heart Internet spreads the love passwords

Hosting firm suffers security aneurysm

Internet Security Threat Report 2014

Web hosting outfit Heart Internet has caused security-conscious customers to skip a beat by sending them a handy text file email attachment containing other people's new passwords.

Last week Heart Internet decided to reset a bunch of FTP and eXtend passwords that had not been changed by their account owners for "an extended period".

Its explanatory email said: "Attached to this email is a file list showing all domain names which have had their password changed. The new password is shown next to the domain name." Thing is, the .csv file attached contained not only a list of all the domains affected, but also every new password.

It's unclear how many customers have been affected by the blunder, as Heart Internet has been somewhat shy about discussing it.

According to one Reg reader who asked to remain anonymous, Heart Internet re-sent the email about one hour later, this time with only his new password in the attachment. Stable doors and horses seem apposite.

Nottingham-based Heart Internet was founded by Jonathan Brealey and Tim Beresford, who also set up and flogged major UK hosting players WebFusion and 123-Reg.

The firm's bosses have not returned any of half a dozen calls from El Reg. We can't imagine why. ®

Providing a secure and efficient Helpdesk

Whitepapers

Choosing cloud Backup services
Demystify how you can address your data protection needs in your small- to medium-sized business and select the best online backup service to meet your needs.
Forging a new future with identity relationship management
Learn about ForgeRock's next generation IRM platform and how it is designed to empower CEOS's and enterprises to engage with consumers.
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
Storage capacity and performance optimization at Mizuno USA
Mizuno USA turn to Tegile storage technology to solve both their SAN and backup issues.