Slashdot Mirror

← Back to Stories (view on slashdot.org)

Code Spaces Hosting Shutting Down After Attacker Deletes All Data

Posted by Unknown on from the hackers-without-manners dept.

An anonymous reader writes Code Spaces [a code hosting service] has been under DDOS attacks since the beginning of the week, but a few hours ago, the attacker managed to delete all their hosted customer data and most of the backups. They have announced that they are shutting down business. From the announcement: An unauthorized person who at this point who is still unknown (All we can say is that we have no reason to think its anyone who is or was employed with Code Spaces) had gained access to our Amazon EC2 control panel and had left a number of messages for us to contact them using a Hotmail address. Reaching out to the address started a chain of events that revolved around the person trying to extort a large fee in order to resolve the DDOS.

At this point we took action to take control back of our panel by changing passwords, however the intruder had prepared for this and had already created a number of backup logins to the panel and upon seeing us make the attempted recovery of the account he proceeded to randomly delete artifacts from the panel.

60 of 387 comments (clear)

  1. The cloud by Anonymous Coward · · Score: 5, Insightful

    Good thing people hosted their stuff on the cloud...

    1. Re:The cloud by SQLGuru · · Score: 4, Interesting

      Single account to rule them all......the best approach is the separation of concerns (user management, server management, backup / restore, etc.) so that it is a lot harder to compromise everything.

    2. Re:The cloud by i+kan+reed · · Score: 5, Insightful

      But that would have cost the company a little more money.

    3. Re:The cloud by Dishevel · · Score: 4, Interesting
      The real problem was that they still had access to their stuff and never bothered to look at the number of accounts on the system before changing the password.

      The concept was good but the people in charge were in way over their heads and it became suddenly clear to them that they had no business securing other peoples data. Good for them. At least they know what they suck at.

      --
      Why is it so hard to only have politicians for a few years, then have them go away?
    4. Re:The cloud by roc97007 · · Score: 2

      Good thing people hosted their stuff on the cloud...

      No kidding. Their backups also, apparently.

      --
      Oliver's law of assumed responsibility: If you're seen fixing it, you will be blamed for breaking it.
    5. Re:The cloud by Penguinisto · · Score: 5, Interesting

      Good thing people hosted their stuff on the cloud...

      I don't think their problem is necessarily because it was "on the cloud" - the same thing could have happened if someone penetrated a corporate network and got hold of a VM farm. A bigger obstacle to be sure, but if your corporation has partner/vendor access and a not-so-sharp security guy...

      One question I have though - instead of changing a password, why couldn't they have called Amazon, had the thing universally locked out for that company, replaced all root-level access with a new account, and sent the new username and p/w by phone back to the company?

      Also, why didn't they have an offline (think: off-cloud) backup of the stuff? Sure it costs time/money/skull-sweat to do that, but it's worth the time and trouble in the end. After all, if your family jewels are hanging out there, it always pays to have a DR plan for 'em...

      If nothing else, they could have set up a separate and distinct AWS account/rigging as a "DR" of sorts, with DB replication and the works feeding it as a warm DR site. That way if some jackass compromises the first, you only need to stop DB replication, turn on the rest of the DR servers, do a quick test, and shift your DNS to the backup site - 15 mintues later, you can delete the objects yourself in the original site if you want (while you set up yet a different site and build a new backup site to replace the one you just put into production.)

      We have a sizable AWS setup where I work, and first/foremost we back that shit up (the DB contents) to machinery that we control. We also have a means of re-deploying/rebuilding if necessary; sure it takes time, but it's better to have it and not need it...

      --
      Quo usque tandem abutere, Nimbus, patientia nostra?
    6. Re:The cloud by rwven · · Score: 3, Insightful

      It has nothing to do with the cloud. It could have been any un-managed hosting.

      The fact that they went with un-managed hosting in the first place is what really screwed them. If they had a real support team they could turn to, steps could have been taken to keep this from happening as soon as the DDOS started, and they would have had "offsite" or at least "offline" backups.

      This happened because it appears that code spaces had some knee-jerk reactions and didn't think through how they were handling this (like changing the password before making sure there weren't other methods of access already established). They should have straight-up called amazon, explained what was going on, and paid for support for amazon put access to their account and instances on lockdown until the situation was resolved. Shoulda, woulda, coulda though...

    7. Re:The cloud by NatasRevol · · Score: 4, Insightful

      More likely, actual planning would have to be involved.

      --
      There are two types of people in the world: Those who crave closure
    8. Re:The cloud by Kagato · · Score: 4, Informative

      AWS has one of the best security systems out there. IF you decide to enable the features. The production AWS configs I've used have mandated multi factor auth (using the number generator on the phone) as well as network source network restrictions. You can also setup a large number of ACLs to restrict things like the ability to create additional accounts.

      It's hard for me to feel bad for these guys.

    9. Re:The cloud by vux984 · · Score: 5, Insightful

      I don't think their problem is necessarily because it was "on the cloud"

      No. The cloud was a key part of the problem. They had as much access and control over the system as the hacker did with no physical fall back.

      A VM farm on an onsite rack or even a colo rack? You knock out the hacker by unplugging it from the router to the internet, and then audit and reset security to your hearts content.

    10. Re:The cloud by nullchar · · Score: 2

      You should always have an offline backup (even if slightly out of date).

      In this case, they could have used a separate "cloud" provider just for backups.

      Cloud or not, everything under one umbrella was the problem.

    11. Re:The cloud by Mister_Stoopid · · Score: 4, Insightful

      Having an offline backup isn't 20/20 hindsight, it's the absolute basics of the basics.

      This is equal to saying that wearing scantily clad clothing means a woman deserves to get raped.

      It's more like saying that a guy who dies in a car accident because he was street racing while drunk, high, and not wearing a seatbelt got what he deserved.

    12. Re:The cloud by Anonymous Coward · · Score: 5, Informative

      With Amazon's service you can contact them and have all access blocked until there is time to sort things out, and authenticate the real admin with billing information or the root SSH key you're given, etc.

    13. Re:The cloud by Jhon · · Score: 4, Insightful

      "Much like the US president can only run for two terms, wouldn't it be grand if there was something similar for the politicians lower down the tree! Politicians _should_ be people who've been out in the real World."

      Unintended consequences -- you don't have people in office long enough to be RESPONSIBLE for anything. All "bombs" get pushed off until the next election cycle when Councilman A is termed out and becomes State Senator A, or Assemblyman A.

      Look to California for everything you need to fear.

    14. Re:The cloud by Munchr · · Score: 5, Insightful

      Exactly this. They state in the article that they had off-site backups. What use are off-site backups if the "on-site" control panel has direct online access to them? "In summary, most of our data, backups, machine configurations and offsite backups were either partially or completely deleted."

    15. Re:The cloud by Noah+Haders · · Score: 2, Interesting

      100% wrong. Maybe the company should have been better prepared, but the fact is they were attacked by a criminal who first hijacked and then destroyed possibly an enormous amount of value in people's data. He, she or they committed a horrible crime and should go to jail for a long time.

    16. Re:The cloud by TheCarp · · Score: 4, Interesting

      I see this come up a lot and honestly..... I mean.... is it really wrong to suggest that a person should think about self-protection?

      Do you lock the door to your house? Your car? I do. I generally wont even leave my phone in the locked car unless I expect I will not be out of view of the car for more than a minute, I even look around first when making such a decision. Why? Because people I know, including myself, have had shit stolen from their cars!

      And you know what.... I, the victim, was stupid for thinking it was going to be ok to leave my GPS on the cradle in the car overnight. The person who stole it is still an asshole, still deserves to be punished, but you know what....that doesn't make me smart for exposing myself to his actions.

      Should a woman be able to wear what she wants? Should she be able to walk down the street at night alone? Yes. Absolutely. However, when my wife clips a knife on her belt before going for walks at night, when she tells me what streets she avoids at night because she knows its where alot of the rapes are reported.... it makes me think I married a smart girl.

      But hey maybe I am odd, I don't say "don''t wear that" I say "don't forget your knife"

      Because its true, she shouldn't ever have to use it, and I hope she never does.... but if it ever happens, I hope she spills entrails on the sidewalk.

      --
      "I opened my eyes, and everything went dark again"
    17. Re:The cloud by Jawnn · · Score: 2

      Backups, accessible via the same system that made them, are not backups. A backup is a thing that lives elsewhere and is not affected by anything that might happen on the primary system. All they had were "copies".

    18. Re:The cloud by Oligonicella · · Score: 4, Insightful

      And the company and it's owners should have their asses sued off for failing to take normal precautions for the data they promised to protect. I have sympathy and pity for the owners of the data (although I have always thought "the cloud" was a stupid idea), but none for the company. Unconnected archiving is a universally recognized good practice. Why in hell don't the new guys understand this?

    19. Re:The cloud by pla · · Score: 2, Insightful

      100% wrong. Maybe the company should have been better prepared, but the fact is they were attacked by a criminal who first hijacked and then destroyed possibly an enormous amount of value in people's data. He, she or they committed a horrible crime and should go to jail for a long time.

      You'll notice that at no point did I excuse the criminal. I agree with you completely that we as a society should dedicate the resources to hunting him down and punishing him.

      That doesn't change the fact that Code Spaces sold a project hosting solution, using all the "safety" and "redundancy" and ease of access of "the cloud" as direct marketing points, and as a result bear direct liability for negligence in failing to secure their systems. Why did they opt to close up shop? Not because they got hacked and lost their current customers' data, but because they know with 100% certainty that in the next few weeks, they will get sued into oblivion.

      Yes, of course we still go after the bad guys... But sorry, the morons leaving the front door open don't just get a pass. If someone gets food poisoning from McDonald's, they don't get to pass the buck to the electric company for their refrigerators going off for a few hours, nor do they get to blame the "real" culprit, e coli. They should have known better, and so should Code Spaces.

    20. Re: The cloud by Aighearach · · Score: 4, Insightful

      At some point, you have to ascribe *some* responsibility on the [victim], no?

      No.

    21. Re:The cloud by Aighearach · · Score: 2

      I see this come up a lot and honestly..... I mean.... is it really wrong to suggest that a person should think about self-protection?

      No, it is wrong to claim that they're expected to. See the difference? No?

      Why bloviate for dozens of words if you're going to fall on your face in the first sentence?

      You can't even tell the difference between prerogatives and coercion, so you have no moral or ethical foundation to build anything on. You have no points, because they're suspended in space and everybody else is on planet Earth.

      And yes, it is really "very" wrong to attempt to exercise other people's prerogatives. It is a less extreme example of the same sort of horribles you consider! So no, you shouldn't be telling people to live in fear, or that it is somehow required for them to put reacting to crime, or giving up their freedom by reacting to it in the way you would desire them to. It is their prerogative, and theirs only, if they will continue to live their own life with their head held high, or cower in fear over protecting a pile of stuff, or something in between.

    22. Re: The cloud by seebs · · Score: 3, Insightful

      Of course she's responsible for how she looks and dresses, it's just that neither of those can ever be, in any way, a justification for rape. They're totally irrelevant. She's also responsible for what she has for breakfast, and that's every bit as relevant to your decision as to whether or not you want to be a rapist. Which, given that you're playing apologetics for it, presumably you do.

      --
      My blog: http://www.seebs.net/log/ --- My iPhone/iPad app: http://www.seebs.net/seebsfrac/
    23. Re: The cloud by seebs · · Score: 5, Insightful

      Good job shifting the goalposts, but that's pretty much totally unrelated. See, the lions are generally not considered to be moral actors. Humans usually are.

      --
      My blog: http://www.seebs.net/log/ --- My iPhone/iPad app: http://www.seebs.net/seebsfrac/
    24. Re:The cloud by chthon · · Score: 3, Insightful

      Your insurance agent would like a word with you.

    25. Re: The cloud by SecurityGuy · · Score: 4, Insightful

      Which, given that you're playing apologetics for it, presumably you do.

      I don't think it's that, it's that in some people's minds, the pendulum has swung too far. I read that some beauty contestant is getting lambasted for saying women should learn self defense. Claims are being made that that promotes "rape culture". It doesn't, it's just the commonsense realization that while in the ideal world there wouldn't be bad people, in the actual world, there are. It's fine to work towards the ideal world, but we also need to live in the real one.

      To put another spin on it, there's a trail around here that used to be a great place to run. It's become a great place to get a beating and your phone/ipod/wallet stolen. I could go run there with my expensive earbuds and $600 phone, secure in the knowledge that I have every moral right to do so unmolested, but I don't. I run with my cheaper earbuds and an iPod shuffle in places muggings don't happen.

    26. Re:The cloud by brainnolo · · Score: 4, Interesting

      But since the topic at hand has nothing to do with rape, let's get stop with unfitting analogies. A company that is offering HOSTING must take have a solid backup plan and security policies in place. Otherwise, even if the criminal who attacked them is solely responsible for the act, the attacked company is 100% responsible in front of their clients, just as it should be.

      In the business world being totally incompetent to offer the service you want to offer is not justified. It has nothing to do with rape, burglary or anything else, really.

    27. Re:The cloud by i+kan+reed · · Score: 2

      To an owner planning is identical to cost.

    28. Re:The cloud by Kjella · · Score: 2

      I don't think that was a money thing, rather it was an oversight of risk management. (...) Besides, where does this "blame the victim" attitude always come from?

      Because it's pretty hard to criticize/discuss/improve someone's risk management without at the same time assigning part of the blame to them. I mean if I was entirely without fault that means I did nothing wrong which means I don't have to change my ways, yet here you are arguing I should take greater precautions which means I did do something stupid which means it's partly my own fault right? It's pretty hard to say that you could and should avoid danger, yet it doesn't matter if you sought and exposed yourself to danger instead.

      If we forget all about rapists and imagine I was struck by lightning, you'd probably say it was a freak accident. If you heard I went to the highest vantage point nearby with my kite during a thunderstorm, you'd probably call me pretty damn stupid and say I did a great job of bringing lightning down on myself. Are you really not going to ridicule me if I fall for a 419 scam with a Nigerian prince? That one involves being exploited by another person too, are you sure you won't put any responsibility on my shoulders?

      I know I'd blame myself if I left my laptop visible in the car and it got broken into, not because it broken into as such - that happens - but because I made it so much more likely it was my car getting broken into. It doesn't mean I deserved it, it's still 100% the thief's fault for stealing it but somehow my inner statistician is screaming something about conditional probability. And I don't choose the risk factors, the thief decides that a visible laptop makes it interesting. The rapists decide if mini skirts is a risk factor, not the potential victims.

      No, it's not just but it's about not becoming the victim in an unjust world. And even if the perpetrator is caught and punished so justice is served it doesn't restore my health or life or trauma that another person is now in prison. I don't want any shit like that to happen to me nor anyone I care about, so I don't think I can help sending out mixed messages saying both "it's not your fault" yet "try harder not to become a victim". If you got a means that doesn't rub anyone the wrong way, I'd love to hear it.

      --
      Live today, because you never know what tomorrow brings
    29. Re:The cloud by Darinbob · · Score: 2

      I think the offsite backups where not their own offsite backups, but managed by Amazon. Which is really not what I would consider an offsite backup.

      "where's your data"
      "in the cloud"
      "where do you keep your backups"
      "um, in the cloud..."

  2. Backing up your cloud in your cloud... by QilessQi · · Score: 4, Insightful

    ...doesn't seem to work so well.

    --
    Koans and fables for the software engineer
    1. Re:Backing up your cloud in your cloud... by gstoddart · · Score: 5, Funny

      Yo dawg, I hear you like clouds.

      --
      Lost at C:>. Found at C.
  3. Just unplug your server from the internet... by Anonymous Coward · · Score: 5, Funny

    So you just unplug your server's network connection from the internet while you fix the damage... oh. cloud stuff needs constant internet connection? hm. well I guess that's it then. It was an honor to serve with you. BOOM!

    1. Re: Just unplug your server from the internet... by Anonymous Coward · · Score: 2, Insightful

      Well, sounds like they first attempted to fix it themselves using ther mad 1337 skills. Amazon cloud is run by adults, and they must have a large staff of top notch security experts. This might sound like monday morning quarterbacking, but if they really feared this threat, they should have called amazon so that not only could they put their instance on ice, they might have gotten some help in hunting down the creep.

    2. Re: Just unplug your server from the internet... by Penguinisto · · Score: 5, Informative

      Who do you "call" with most cloud vendors? After all, sounds like whoever was doing the DDOS to extort Code Spaces could have also "called" Amazon to do any number of things, as whoever it was had the passwords, other accounts, etc..

      I've actually worked with them once - sure someone could impersonate them, but you could just as easily call up, explain the situation, and then prove you're the rightful owner of the account (using info that most script kiddies aren't going to think of gathering in the first place, let alone spoof the original contact phone #.)

      To their credit, Amazon is actually fairly intelligent and responsive, even to small accounts.

      BTW - if you use/handle it right, each instance comes pre-made with a specific SSH auth keyset for root, and you're the only one with the private key (even Amazon doesn't have it) - store/use that as your proof by logging into an instance with one (it's something the script kiddie definitely won't have).

      --
      Quo usque tandem abutere, Nimbus, patientia nostra?
  4. I can't think of a better argument... by Lab+Rat+Jason · · Score: 5, Insightful

    for air gapped backups.

    --
    Which has more power: the hammer, or the anvil?
    1. Re:I can't think of a better argument... by Russ1642 · · Score: 5, Insightful

      If your backups are sitting right next to your active files they aren't backups. They're just copies sitting there.

    2. Re:I can't think of a better argument... by gsslay · · Score: 2

      Why isn't this standard procedure for all data repositories?

      Doesn't matter how efficient and secure you are, if one person can wipe absolutely everything from one control panel then you have a risk that is not being addressed. And one that isn't even difficult to address.

    3. Re:I can't think of a better argument... by Charliemopps · · Score: 4, Interesting

      for air gapped backups.

      It has to be more than that. We had a policy of air gapped backups that everyone followed. But we had several different sites with several different admins. There was a large hurricane and we found some flaws in the system to say the least.

      In several cases, the backups were kept IN the drive... they were gone.
      In others, they removed the backups, put them on top of the server or in a desk draw.... gone as well.

      In others, they actually removed the tapes from the site, but often they were taken home by the admin or other staff... in those cases we faired slightly better because both the site and the staffs house would have to be under water. Hurricanes are big however, so we had about a 50% success rate there.

      In some cases they had a safe on site. This proved marginally better... the tapes were safe in most cases. In one instance we had a rather brave Admin fly across the country, take a cab out to the site and the literally SWIM to get the tape. But in a lot of cases the tape was OK, but the safe was under water. So we weren't able to retrieve it for days.

      The sites where local admins stored the tapes at local banks faired the best. So now that's our policy. Backups get stored off-site, in a vault. Technology is better now so we also do remote backups across the net now as well in case the bank is under water as well. But no matter what, we can always head to the bank vault. Ok, I guess a meteor would ruin our day, but you cant plan for everything.

    4. Re:I can't think of a better argument... by DoofusOfDeath · · Score: 4, Insightful

      If your backups are sitting right next to your active files they aren't backups. They're just copies sitting there.

      I think that's an oversimplification. They're still backups. They're just not backups against some failure modes that people would have expected.

    5. Re:I can't think of a better argument... by nine-times · · Score: 2

      There was a large hurricane and we found some flaws in the system to say the least.

      That's why you have backups in different geographical areas.

      The sites where local admins stored the tapes at local banks faired the best.

      Have you considered a service like Iron Mountain? They'll send out a truck to pick up your backups every day, if you like, and store it in a very safe location.

  5. Whoever pulled this off by Anonymous Coward · · Score: 4, Funny

    would you mind going into ebay.com & deleting my account?

    Ebay refuses to close it.

    1. Re:Whoever pulled this off by sexconker · · Score: 2

      would you mind going into ebay.com & deleting my account?

      Ebay refuses to close it.

      Move to Europe and sue them under your new right to be forgotten.

  6. Well that escalated quickly by ACK!! · · Score: 2

    At least they had backups of their cloud data in a safe place where no random asshat could just go in and waste the data. That is a code hosting company you can trust with your stuff that is for sure!

    --
    ACK /ak/ interj. 2. [from the comic strip "Bloom County"] An exclamation of surprised disgust, esp. i
  7. Re:No offsite backups? by gstoddart · · Score: 5, Insightful

    No, because it was all in Amazon. Who needs tape when you have the cloud, right?

    So the stuff they had backed up from Amazon to Amazon, was still controlled by the same logins (or the ones the hacker had created).

    So when he/she/they started deleting stuff, the backups also got deleted.

    Sounds like a brilliant strategy, and an epic demonstration of what can go wrong with the cloud.

    If you host your own stuff, you do your own backups. If you backup your cloud data to the cloud using the same stuff as the rest of it ... well, your backups are hardly secure, are they.

    So unless Amazon has offsite tape backups (which I highly doubt) ... they're pretty much screwed.

    I think this is about the same as backing up your hard drive to itself so you have a spare copy.

    --
    Lost at C:>. Found at C.
  8. If your operation is compromised, shut it down by Anonymous Coward · · Score: 4, Insightful

    The guys behind Code Spaces should be issued a citation for Operating While Pwned. If you know admin access is compromised, shut it down out-of-band.

  9. The dog ate my homework. by Thanshin · · Score: 3, Insightful

    I must be a cynic but my first reaction is to think:

    1 - Create cloud based system.
    2 - Sell subscriptions for hundreds of $.
    3 - Announce hacker attack!
    4 - Profit.

  10. Not a Great Response by Edrick · · Score: 5, Insightful

    If you're a hosted site with important data and your site is compromised, the first & best move is to cut the cord immediately. Contact Amazon (or whomever is hosting the data) and get all access shut down instantly and immediately, thereby ending the attacker's ability to do anything further. This will cause an outage, but at least everything is safe.

    Working with Amazon, they can create a new account, give it a strong password, and begin cleaning up the mess with the new account (which the hacker will be unaware of). Now they can, at their own leisure, change passwords, administer accounts, delete crap created by the hacker, etc...Trying to outpace a professional hacker at their own game is a gamble that isn't worth it---especially if no offsite backups exist!!!

    Lastly, they should be forwarding all of the email/attacker info to Amazon, Microsoft (Hotmail), and to the authorities. Whether they can be caught or not is up in the air, but odds are almost certain that this attacker has hit other sites and would eventually have different cases correlated to each other.

    Safety & security of data is #1, fixing damage caused is #2, and accountability is #3. Securing the site against future attacks is part of #3---there's no reason to put the site up (or leave it up) and risk further attacks, thereby risking data loss or a security breach.

    1. Re:Not a Great Response by jader3rd · · Score: 2

      Contact Amazon (or whomever is hosting the data) and get all access shut down instantly and immediately, thereby ending the attacker's ability to do anything further.

      But what if the attacker is the one contacting Amazon to shutdown everything? Do you want your business shut down by random teenagers calling Amazon, telling them to shut everything down?

    2. Re:Not a Great Response by Nemyst · · Score: 4, Insightful

      If the attacker has access to the financial details used by the company to pay for the hosting, which is generally how you can authenticate people safely, you have much bigger problems.

  11. Re:No offsite backups? by Bengie · · Score: 2

    No, because it was all in Amazon. Who needs tape when you have the cloud, right?

    A rule of thumb that I've heard was "It's not backed up until on at least 2 different media types, at least 2 different file systems, and stored in at least 2 different physical locations".

  12. The cloud by Anonymous Coward · · Score: 3, Funny

    Normally things form clouds AFTER going up in smoke. With the 'new technology' it is the opposite.

  13. Facking Idiots by l0ungeb0y · · Score: 4, Interesting

    Not providing for your own OFFLINE BACKUPS is a reckless oversight of such magnitude that I am entirely incapable of having sympathy for these asshats. We need a few examples such as these to serve as cautionary tales for those who think the Cloud is the answer to everything.

    1. Re:Facking Idiots by iggymanz · · Score: 2

      nothing to do with being cloud based or not, just proper attention to good systems operations practices was lacking.

      even not doing the obvious and blocking all newly created accounts after certain time is just incredibly irresponsible.

  14. Git by blackiner · · Score: 5, Interesting

    This is why git is such an effective code hosting solution. Everyone who has cloned the repository is a potential backup copy.

    1. Re:Git by JigJag · · Score: 2

      Only wimps use tape backup: real men just upload their important stuff on ftp, and let the rest of the world mirror it ;)

              Torvalds, Linus (1996-07-20). Message. linux-kernel mailing list. IU. Retrieved on 2014-04-26.

      I guess we should update that quote and replace ftp with git

      --
      "The hallmark of humanity is the ability to move beyond sensory inputs" - Mary Helen Immordino-Yang
  15. Re:No offsite backups? by jeffmflanagan · · Score: 4, Insightful

    >Sounds like a brilliant strategy, and an epic demonstration of what can go wrong with the cloud.

    No, it's just an example of what can happen to incompetent people. There's no reason to believe that these people would not have also failed to have offline backup with local servers. There was nothing to prevent them from keeping backups locally or on another cloud.

    Blaming cloud computing for this is completely idiotic, and about what I expect on the dumbed down Slashdot these days.

  16. This must be where IRS stored backups by Culture20 · · Score: 4, Funny

    This must be where the IRS stored backups of emails.

  17. Re:Secure. Responsive. 24/7/365. the Cloud. by FictionPimp · · Score: 4, Funny

    My password is "invalid" so when I type it wrong I get a message: "Your password is invalid."

  18. Just unplug the server by grimmy · · Score: 2

    ....oh never mind.