REPORT - MC SERVER HACKED?

SharleenSharleen
in Questions and Reports

Hello,

FACTS :

I found my stolen B/G video on another site again, this time non cropped and without my logo. This video has exclusively been posted on my MC website WITH watermarks. It has never been shared in any other way and my downloads are turned off.

The hacker got the non watermarked original video file that has only ever been hosted/transited on MC servers. That means the hacker got access to MC servers. Wich I know is possible, yet should always be very difficult (unless the person is from the inside). It's an open war between webmasters and hackers, each of them always looking for a solution to counter each other and I hope MC is doing its best to protect our content from leaking!

Other fun fact : the video has been hacked on the exact day it was posted. My members started watching the video only the day after it was published (taking in account time differences). And I wasn't on camites promoting this day. Fun that the hacker knew when this video is being posted, and choose to hack my most valuable video specifically (valuable both for my brand, affiliate promo and stalkers). 

This is very alarming to me. I'm not in control of my content and personal informations security as I pay a CMS to do it for me. All I can do is cry, hope that no more video will be leaked and trust people who are in charge of that. But how can I trust you if you don't take that seriously and just see it as a job risk? The only reason I turned to an existing CMS instead of building my own site was the payment and datas securing. Thought a big platform would do better than me at that. You don't cover chargebacks, and now this. 

 

SO : 

Internal leak or just a very skilled hacker?

I also noticed the lack of will when I asked support to investigate, sounded like a "just give up it's how it is". No, no. No. No. This is not something you can close your eyes on and how dare you even tell me that? You can't be serious. You're supposed to secure our datas and content. I'm tired of saying "yeh sure no worries" everyday in support chat, and I'll absolutely never say that about stolen content on supposedly "secured servers".

Are my private informations even safe???

Your server is compromised, do something and don't tell me I'm wrong or that it's how it is, seriously, enough of that. Again yesterday, I had support telling me and i quote "I am not sure there should be an option to edit them for liveshows, or to upload your custom thumbs. This option is available for videos.". What. The. Fuck. I've been choosing thumbnails and uploading them for 8 live shows before the glitch.

Everytime I report something serious, I'm the crazy one. This time it's beyond crazy, not talking about my personal speculations, just read the facts I'm bringing to you.

What can I do? Just close membership option, wait for all subscription to terminate and run away from MC servers, hoping my private informations will be deleted?

 

Sherlock is out. 

Comments

  • NatalieNatalie

    Hi there Sharleen. The facts you've provided are surely disturbing. I know the investigation is in progress and support is already in touch with you, but I wanted to reply here and make sure I underline that this will NOT be taken lightly or marked as unimportant. I'll personally make sure that the full information is gathered on what happened and actions are taken to ensure there that we find and nail the source of the leak.

  • TheNatalieKTheNatalieK

    can I ask, what was the other site please? Which tube or site was this alledged video seen on? You say you only updated this BG video here, did the B have a copy of this video? Has he released it outside of this domain?

  • SharleenSharleen

    Sent you a pm NatalieK. For others, the "B" is my husband, he doesn't have a copy of the video and is only interrested in seeing me success, never had any hand on my work nor wanted to, owns many videos of me for his own pleasure and I never seen any of them on the net. He only appears in my videos occasionaly, he's into assjob, cuck, findom and various kinks but def not into revenge porn.  

    Only a very limited amount of people actually have access to the source files, so it is not difficult to check this[...] If there was some hacker attack on the server, we would have had records of it and according to our data center, there has been no unusual activity of any kind with the content.

    I know it's easier to blame on someone my side when you can't find where the leak comes from. Tho, MC hardly resolves silly interface glitches on my site or prevents them, so I highly doubt it's that easy for them to notice a hacker attack. I don't have any hope you'll ever find something, I just hope you'll reinforce your security and that it will never happen again, to any other model. 

  • TheNatalieKTheNatalieK

    Hey Sharleen, while I understand your concern, let´s be honest, these days there are many programs that edit the videos and remove watermarks, here´s on 

    https://www.videograbber.net/remove-watermark-from-video.html

    there´s even tutorials on youtube about how to remove a watermark and make a video clean again. It´s possible one of your members has done this. 

    I would have suggested the best bet is go to the website you have found your movie and ask there whether they can help, maybe who or ip address and see about following it back.



    Hope you get it all sorted! Best of luck x

  • SharleenSharleen

    Ok, before someone else give me unecessary advices and recommendations again, here is the conclusion from support, same conclusion I've made 2 days ago already :



    It's not my members, the logo hasn't been removed. It is the original file and it got leaked on MC servers. How? Who? We still don't know, but it's just a matter of time.

    I wanted to update you on the results of the thorough investigation I have conducted with our development and content teams. We have checked the data transfer logs here at ModelCentro and the videos on the sites via the links you have provided.

    Indeed the links to the pirated content display uncropped versions without watermarks. Also, it is definitely not the case when a watermark was removed from the video. Since you use quite a large watermark, there should have been a blurred spot or other traces of it and none were found. So, we confirmed that this specific leaked video didn’t have the watermark in the first place.

    However, as you use the watermarking feature on ModelCentro, the video files appear on your site, with watermarks, straight after processing. The original source file is located in a completely different place, which is not linked to the site in any way, and there is not a single trace of it that a hacker could have found. What I mean is you can’t grab a link to it or file path through the website. The content server file system is built in such a way that it can’t be accessed from outside.

    So, in a worst-case scenario, if someone would by-pass all the site’s security measures and reach the video file, he would be able to get the watermarked version only, as the source is unreachable.

    As to the possibility of an internal leak, although it would be unheard of here, there are logs of activity for each manager and we could not locate any unusual activity within the server with the source of this video. Only a very limited amount of people actually have access to the source files, so it is not difficult to check this. The content compliance team, for example, only has access to the processed and published content (watermarked version) and so the same matter of having the non-watermarked video leak applies – it could not have been the approval team. If there was some hacker attack on the server, we would have had records of it and according to our data center, there has been no unusual activity of any kind with the content.

    I’d really like to get to the bottom of what happened here and how the content has leaked but as of now, I have found no trace that would suggest that the leak has happened on ModelCentro’s end. Please let me know if you have any additional information related to this case, I would really appreciate it. 

    I would like to add that the owner of the site doesn't answer to my mails and is well known to give shit to camgirls. 

  • StanDaManStanDaMan

    @sharleen, we'll be happy to help you DMCA the content from the offending site/s. Please let us know if you would like for us to do that. I am sure you are aware of the fact, but i'd like to remind you that our goals are completely aligned, we only make  money if you do, so we are of course not interested in your content getting out without your permission, and of course without watermarks without possibility of getting revenue for you.

     

  • StanDaManStanDaMan

    Furthermore, this is the only case of such an issue that we've had reported so far, and of course security is our top priority, so we'll keep investigating regardless of this being a single case.

  • WebcamStartupWebcamStartup

    Could the CDN itself have been compromised somehow? There any way to identify the CDN through the source code?

  • NatalieNatalie

    @WebcamStartup It wouldn't be CDN level since source files can not be reached through it, if it was a CDN issue the stolen content would have been watermarked.

Sign In or Register to comment.