Info xui.one hackers activity

[wil]

xui.one hackers activity these days

 

[SlackerMafia]

View attachment 5461xui.one hackers activity these days

Damn. thats insane! Sorry bro.

 

[infoaxetv]

Damn. thats insane! Sorry bro.

same here any advice?

 

[SlackerMafia]

same here any advice?

I would contact them and first ask for proof they have your database.

Op, are you locked out of panel?

 

[infoaxetv]

I would contact them and first ask for proof they have your database.

Op, are you locked out of panel?

i have the data base, but i have reinstall twice and got hacked again

 

[Moutamared]

i have the data base, but i have reinstall twice and got hacked again

change the panel and the links, ports for the panel

 

[DgBrasil]

Change the password and port of all your LBs.

Check that they do not have users other than root.

Check the entire DB.

If there is no different access code, change your old access code, generate a new one.
Check that there is no MySQL user or any database other than the normal one.

 

[benjyteve]

I have seen this before and dealed with this, stop using third party tools from unknown souces, btw I can help with this.

 

[thanospepe]

I have seen this before and dealed with this, stop using third party tools from unknown souces, btw I can help with this.

For free right?

 

[infoaxetv]

Thank you guys for your replys and advices, i have been very busy recovering everything that why i didnt post more here, because they continues hacking my other servers had hack 3 mains so far.
he know that i ask help here look the last messege he left on the last hack, no hard feeling on my side, is just SAD a person with such a talent waste on that way.

@GTAXUI thanks for contact me, sorry i dont know why i cant reply to private mesage, but thanks for the offering, we have an idea how is happening i can share it with you.

@redhat can you please check my account doesnt allow me to sent any type of private messege even to support, i paid the premium thanks

 

[benjyteve]

For free right?

Do you offer your streaming service for free? Hope that can reply your question

Thank you guys for your replys and advices, i have been very busy recovering everything that why i didnt post more here, because they continues hacking my other servers had hack 3 mains so far.
he know that i ask help here look the last messege he left on the last hack, no hard feeling on my side, is just SAD a person with such a talent waste on that way.

@GTAXUI thanks for contact me, sorry i dont know why i cant reply to private mesage, but thanks for the offering, we have an idea how is happening i can share it with you.

@redhat can you please check my account doesnt allow me to sent any type of private messege even to support, i paid the premium thanks

I don't think it's a good idea to follow instructions or accept offers from any user claiming to be GTA, even if they present themselves as the "real" GTA. You don’t need to trust them, as this individual was the first to insert backdoors into their version of the Xtream Codes panel. Numerous users have reported this across the internet and in Telegram groups.

To protect yourself from scammers and other "hackers," avoid giving anyone access to your server, refrain from installing third-party scripts, and don’t pay for services they can’t deliver.

 

[thanospepe]

Do you offer your streaming service for free? Hope that can reply your question

Do you offer your streaming service for free? Hope that can reply your question

You said I can help with that, and help mean free... you didn't say I am able to fix your problem with a small amount.
Also, the hackers are asking for money. You are asking for money, and how do we know that you are not one of the hackers?

 

[benjyteve]

You said I can help with that, and help mean free... you didn't say I am able to fix your problem with a small amount.
Also, the hackers are asking for money. You are asking for money, and how do we know that you are not one of the hackers?

Well, 'help' doesn’t always mean free, by the way. I can't offer a solution with a set price directly in this forum due to the rules, of course. As for your comparison with 'hackers,' don’t you think there's a difference between offering a solution and paying someone who is trying to extort you? I’ve already explained the reasons why many people are facing this issue with their panels.

 

[ocbslim]

Thank you guys for your replys and advices, i have been very busy recovering everything that why i didnt post more here, because they continues hacking my other servers had hack 3 mains so far.
he know that i ask help here look the last messege he left on the last hack, no hard feeling on my side, is just SAD a person with such a talent waste on that way.

@GTAXUI thanks for contact me, sorry i dont know why i cant reply to private mesage, but thanks for the offering, we have an idea how is happening i can share it with you.

@redhat can you please check my account doesnt allow me to sent any type of private messege even to support, i paid the premium thanks

"we have an idea how is happening i can share it with you"

You can share the idea of how is happening so we can know it too?

 

[benjyteve]

"we have an idea how is happening i can share it with you"

You can share the idea of how is happening so we can know it too?

Any version of XUI.one, Xtream Codes, or any other name based on the same core is intentionally made with backdoors. This is why many providers have been detected in the past, with most private sources leaked, servers infected with malware, or exposed to third-party access.

 

[CentOS]

First of all, I never wanted to have to post this, but since it's happening, I'll tell you a little about what I know.

1) ODIN OdinToolbox binaries are extremely risky to use.

This happens because xtreamUI was an open source project that reused the xtreamcodes core. Odin made small, insignificant changes, encrypted everything, created ELF64 binaries compiled with GCC with obfuscation, a low-level language to make reverse engineering difficult. I looked into it and I would never use that, since once you run it on your machines, even migrating to a new platform can be compromised. XtreamUI is a better option, a reliable source.

2) XUI comes migrated from ODIN, for the most part, which means that your server may already have been compromised.

In addition, never use the default port 22, and always run yum update to update the repository base.

3) I believe this part will not be worth much to most people on the forum. There are tools known as Koffice, mainly in Latin America, that connect directly to the database with full access, be it xtreamUI, ODIN, XUI, which means that any failure in this platform leads to full access to the database. As incredible as it may seem, I have met people who only got rid of technical problems when they left this platform aside. From the moment you use a control panel, management that is not on your server but that connects directly to your database, you are giving up your own security. These people can act with their own intentions; they can be your competitors and you just don't know it.

please use only ubuntu 20.04 or higher
forget about 18.04 END OF LIFE

Just think about it a little.

 

[wil]

First of all, I never wanted to have to post this, but since it's happening, I'll tell you a little about what I know.

1) ODIN OdinToolbox binaries are extremely risky to use.

This happens because xtreamUI was an open source project that reused the xtreamcodes core. Odin made small, insignificant changes, encrypted everything, created ELF64 binaries compiled with GCC with obfuscation, a low-level language to make reverse engineering difficult. I looked into it and I would never use that, since once you run it on your machines, even migrating to a new platform can be compromised. XtreamUI is a better option, a reliable source.

2) XUI comes migrated from ODIN, for the most part, which means that your server may already have been compromised.

In addition, never use the default port 22, and always run yum update to update the repository base.

3) I believe this part will not be worth much to most people on the forum. There are tools known as Koffice, mainly in Latin America, that connect directly to the database with full access, be it xtreamUI, ODIN, XUI, which means that any failure in this platform leads to full access to the database. As incredible as it may seem, I have met people who only got rid of technical problems when they left this platform aside. From the moment you use a control panel, management that is not on your server but that connects directly to your database, you are giving up your own security. These people can act with their own intentions; they can be your competitors and you just don't know it.

please use only ubuntu 20.04 or higher
forget about 18.04 END OF LIFE

Just think about it a little.

It means that no panel is safe, all are insecure, you depend on others and all have a back door.

 

[benjyteve]

It means that no panel is safe, all are insecure, you depend on others and all have a back door.

Yes, or invest in something built from scratch for you, where you get visible, unobfuscated code, and if it uses third-party dependencies in the core, everything is documented with references to what is used and who maintains it.

Then have someone updating everything, checking for security issues, and patching anything necessary in this custom panel.

Because it’s hard to believe that an existing solution in the market wouldn't be insecure.

 

[ayouyou]

Yes, or invest in something built from scratch for you, where you get visible, unobfuscated code, and if it uses third-party dependencies in the core, everything is documented with references to what is used and who maintains it.

Then have someone updating everything, checking for security issues, and patching anything necessary in this custom panel.

Because it’s hard to believe that an existing solution in the market wouldn't be insecure.

 

[HyperX]

It means that no panel is safe, all are insecure, you depend on others and all have a back door.

A lot of panels exists, looks like it is XUI problem