The company made the announcement through a blog post. In this he stated that one hacker managed to gain access to an internal server. There he found a token he had given him access in a internal API.
According to the company, hacker used the API to access one base data that stores them personal information about 14 million customers. Some of the information stored in this database is Hostinger usernames, client IP addresses, usernames, and data customer communication, such as phone numbers, e-mail and home addresses. In addition, there are passwords of users in hashed format.
Hostinger found out that some of her clients were affected by the hacker attack, so she decided to proceed reset passwords to all affected accounts.
Many users reported that they received email or notifications at Twitter, who were told to reset their passwords.
According to Hostinger, the hacker failed to gain access to financial data and sites of customers.
The company said that the violated one server and the API have been removed.
"Our central system API server has been damaged and we know that intruders may be extracting data directly from the database," said CEO Balys Kriksciunas.
"We had to make quick decisions," he said. "We have reset the passwords of all clients affected by the API server breach."
The company said it is unable to reveal more at this time, as it is a very early stage of the investigation and new data may emerge.
How useful was this post?
Average rating / 5. Vote count: