On May 3rd, 2020, at approximately 03:00 am (UTC +2), a remote attacker managed to exploit a critical vulnerability in a 3rd party system that is a crucial part of Post Affiliate Pro’s infrastructure.
Incident summary
The attack investigation lasted approximately 16 hours to ensure our customer’s data was safe. There’s no indication that the customer’s data was exploited, tampered with, or leaked. According to our insights, the attacker’s goal was to mine cryptocurrencies.
After the attack was confirmed, our support team immediately shut down most of our servers to prevent any further data vulnerability. The issue was escalated to system admins, as well as top management, and immediate steps were taken to mitigate the attack.
Attack mitigation steps
The following steps were taken to mitigate the attack:
- Access to Salt masters was limited by firewall rules
- Patches provided by SaltStack and additional custom patches were applied
Preventative actions
To ensure that an incident like this won’t happen again, our teams implemented:
- Additional monitoring to identify and patch similar vulnerabilities
- Complete review and improvement of internal emergency procedures to ensure a faster reaction time
- Additional layers of protection to reduce a hacker’s ability to maneuver as they work their way through different levels of defense mechanisms.
We apologize
We apologize for any inconvenience this attack may have caused for your business. We appreciate your patience and understanding and hope to make it up to you with years of excellent service.
Frequently Asked Questions
Is it correct that according to a GDPR, there were no break of rules regarding to a personal data?
Yes, there were no break of rules in terms of GDPR. If it was a case we would have already informed a relevant government office.
Share this article
Discover how Post Affiliate Pro ensures GDPR compliance with robust privacy, security, and transparency measures. Learn about data protection officer roles, secure data handling, and your rights to data erasure. Our dedicated support team is ready to assist with any GDPR-related inquiries. Explore our secure features, automatic procedures, and comprehensive compliance strategies today.
Post Affiliate Pro – Recent Updates and Improvements in April 2023
Explore the latest updates and fixes in Post Affiliate Pro's April 2023 enhancements. Enjoy strengthened password security, new affiliate channel features, improved system security, and optimized performance across various functionalities. Dive into our blog to discover how these changes enhance your affiliate marketing experience!
Discover the power of Post Affiliate Pro's comprehensive reporting features, perfect for individuals, start-ups, SMBs, and enterprises. Analyze and optimize your affiliate marketing with customizable dashboards showcasing trends, map overlays, top affiliates, and more. Start your free trial today to boost your marketing strategies and maximize ROI!
Post Affiliate Pro Bug Bounty Program
Join Post Affiliate Pro's Bug Bounty Program! Help us enhance security, report vulnerabilities, and earn rewards. Learn more now!
Faucet Security Affiliate Program
Join the Faucet Security Affiliate Program and earn 5% commissions with daily payouts in digital currencies. Promote a leading antibot security service, accepted worldwide, and boost your income with our CPM affiliate program. Enjoy a 60-day cookie duration and access to diverse promotional tools. Start earning with Faucet Security today!
Discover the exciting updates in Post Affiliate Pro's April 2024 release! Explore new features like enhanced fraud protection, improved coupons, and daily/monthly report exports. Our latest refinements ensure a smoother, more secure affiliate marketing experience. Visit now to elevate your marketing strategies!
