Gibson Index

2013-04-14: Linode Resets All Passwords After Detecting Intrusion

Level One Event

Linode, a Linux Virtual Private Server hosting provider, has taken the precautionary action of expiring all user passwords & forcing a reset on login, after detecting unauthorized traffic on their network.

They say that the intrusion was targeted at a single customer and likely did not affect any other customers, but they have decided to err on the side of caution and reset the passwords of all their customers. Since regular password changes are considered a staple of a good security strategy, this is likely a beneficial action for most customers - additional motivation to ensure that they are using a strong password.

Linode has also advised customers to generate new API keys and LISH (Linode Shell, console access to VPS) credentials.

Related Links


comments powered by Disqus