Dear Invex Ltd. Investors,
The technical staff at the datacenter is working hard and things are on the right way. Here are some explainations of what we are doing:
As you know, our server was attacked and seriously hit. We were using the Prolexic protection, that was very efficient, but a small bug in OUR protection (Not from Prolexic, but from US, our technical team) made the hackers able to enter our server.
Using Prolexic, our site's IP address was hidden, and impossible to guess. The "bug" was that in the emails that our server sent to you (for the Support Center, for the passwords, etc), showed the IP address of our mail server!
The hackers entered our server through THIS IP address. Then it was easy for them to redirect the domain to another place, and so appeared this fake "Plesk page".
We will use this lesson, and are working so that:
1- The IP address of the domain will be hidden as before, 2- The mails sent from the server (Tickets, passwords, etc) will be sent through a chain of public remailers. Some of you who know, for example, Mixmaster, the "onion routers" etc, understand what I am speaking about.
This takes time, and we will not re-open the site, even for a "welcome" page, until all is setup. Hackers showed how efficient is their work, and we won't give a chance to them.
We decided to stop working with Prolexic despite we were very happy of their Service, but we prefer work with a 100% new system.
The domain name invex.org HAS BEEN recovered by us.
About the DNS: We let them, until we are not ready to run again, at Zoneedit. We will then change them to a DNS server that will be, too, hidden. Requests will go through a well-protected network, redirected to our hidden DNS server, that will then send them to our "protected network" (Like Prolexic was before), that will send them to our server!
Sorry for all these technical details, but they were usefull as we read all the stupid stuff that is told on various places. About this, we decided to not give any kind of reply. Our only reply will be done by the re-opening of our service.
The question you are all asking is "When?". We are working on the "remailer" system that must be installed on our server. It is hard to setup as it involves cryptography, frequent automatic tests that must be run every 10 minutes or so to be sure that the network that will be used to route the emails is not broken, etc etc.
We are still expecting to be online at the beginning of the week, but we will for sure NOT reopen until ALL is at 100% ready. ONE small error and we are gone for a new hack!
I will just reply to a message from probably a "specialist of security", who wrote "With $5,000,000 received, they are not able to protect their website!" This is a really stupid remark, as bank servers are sometimes hacked too, as governmental servers too! And they have more money than us to protect their business!
A last note about our last update: All what we wrote about, including about some third parties companies, is 100% accurate and will be developped as soon as we will beck online.
Those of you who want contact us may write to invexmail@xxxxxxxxx.net* We will try to reply to everybody, but you probably understand that we are about to receive thousands of mails, so be patient for the reply. Moreover, we ill not reply to questions about "your" investment, with sums that will be paid etc. Just know that your investments are SAFE and continue to generate profits, you will just login when we will be back online and will see them.
Thank you again for your patience!
Invex Ltd. Staff
Must really hand it to Invex for their timely and detailed communication. No trouble then, right? Just a little bit more delay. Let's be patient. Then again, the skeptic in this HYIP player makes me wonder...
Oh well. Only 1 week to find out.
* I don't want every Tom, Dick and Harry to email Invex, so I masked the email address.
No comments:
Post a Comment