Vasparvans Account Patched -

Vasparvans account had a blank password and admin privileges. Exploitation: Attacker logged in via SSH and escalated to root. Patch Applied: Password set to 25-character random string; account moved to ‘restricted’ group; MFA enabled. Result: Previous exploit attempts now fail; account activity logged with alerting.

On , servers went down for a routine maintenance window. When they came back up, the Vasparvans account could no longer log in. Attempts to authenticate returned a new error code: ERR_AUTH_016 – Legacy credential deprecation . vasparvans account patched