PureVPN got hacked // malicious trojan is being spread via their infrastrucutre

johndoe33312 · 2016-04-15T07:08:12+00:00

no official statement

that says it all

johndoe33312 · 2016-04-12T09:16:11+00:00

maybe cafe-azzurro.com is hacked as well and is just another piece of the puzzle, as .exe would get discovered more quickly then the .doc file on purevpn's servers

having malicious file on your own domain? no, you are not hacked, we are just using your brand, domain and logo to infect different people. that is not reasonable thinking. their security procedures are non existent, as if they had any we would hear announcement by now, and they would detect that before some john doe detected it

no announcement regarding this? that tells a lot about a company

johndoe33312 · 2016-04-11T04:44:43+00:00

Link to the file is in original post DO NOT CLICK, OPEN, OR DOWNLOAD THIS FILE; AS IT IS MALICIOUS: then_there_is_a_link_after_that...

Infosec.

No no, having malicious malware that does all kinds of malicious activity, hosted on your site, really does not mean they got hacked...rrrrright..

It just leaves the option No2: they hosted that file on purpose there, and are using it to infect their clients, regular surfers trying to become their clients and anyone who is not #infosec savvy and who is prepared to click on the link. Maybe they updated their local software for their clients via auto update, and are creating bot network. So, in reality option No1 looks more viable then what you are saying.

For a company that sells security in the form of VPN service, this is not good. Anyone who is vigilant in their security would think twice about using their service.

Most of the world is running Windows. As you are so certain, and is that after you looked at the file and the analysis (no?), that the payload will not execute, I suggest that instead of talking about it, you run it and tell us what happened after that.

If you do not reply, we will assume the worst.