Web hosting company GoDaddy reveals new hack exposed up to 1.2 MILLION of its customer emails and numbers that puts users at risk of phishing attacks

- Advertisement -


  • GoDaddy is an Internet domain and web hosting company based in New York.
  • The company recently filed an incident report with the SEC regarding a hack
  • It says 1.2 million customer email and account numbers were exposed
  • The attack took place on 6 September, but was observed on 17 November.

- Advertisement -

GoDaddy, an Internet domain and web hosting company, announced that the accounts of about 1.2 million of its customers were exposed in a recent hack.

American company filed details of the incident with the Securities and Exchange Commission (SEC) on Monday, explaining that it had identified ‘suspicious activity’ in its managed WordPress hosting environment.

advertisement

According to the document, ‘An unauthorized third party accessed the provisioning mechanism for managed WordPress in our legacy code base.’

GoDaddy notes that email and customer numbers were collected during the attack and warns that it could result in phishing attacks, a type of scam where an attacker is designed to trick the victim into giving away sensitive information. sends a fraudulent message.

- Advertisement -

scroll down for video

GoDaddy, an Internet domain and web hosting company, announced that 1.2 million accounts of its customers were exposed in a recent hack.

“We identified suspicious activity in our managed WordPress hosting environment and, with the help of an IT forensics firm, immediately began an investigation and contacted law enforcement,” Chief Information Security Officer Demetrius Koms said in the filing.

The company, whose shares fell nearly 1.6 percent in early trading on Monday, said it had blocked unauthorized third parties immediately, and an investigation was still underway.

GoDaddy found that unauthorized third parties accessed its systems on September 6, 2021, but the firm did not identify the attachments until November 17.

For active clients, SSH File Transfer Protocol, which is a network protocol that provides file access, transfer, and management over data streams, and database usernames and passwords were exposed.

GoDaddy found that unauthorized third parties accessed its systems on September 6, 2021, but the firm did not identify the attaches until November 17.  The company, whose shares fell nearly 1.6 percent in early trading on Monday, said it had blocked unauthorized third parties immediately.  team

GoDaddy found that unauthorized third parties accessed its systems on September 6, 2021, but the firm did not identify the attaches until November 17. The company, whose shares fell nearly 1.6 percent in early trading on Monday, said it had blocked unauthorized third parties immediately. team

However, the filing says that GoDaddy has reset both passwords.

Comms also notes that the firm is working with law enforcement and private IT forensics companies, according to Engadget, which first reported on the matter.

In an SEC filing, Cums wrote, ‘We sincerely regret this incident and the concern it has caused to our customers.

‘We, the leadership and employees of GoDaddy, take the responsibility of protecting our customers’ data very seriously and never want to disappoint them. We will learn from this incident and are already taking steps to strengthen our provisioning system with additional levels of security.

This isn’t the first time GoDaddy has been attacked: In 2012, an isolated incident caused the shutdown of all websites hosted on its system—affecting thousands, perhaps millions, of businesses.

The attack caused websites to be shut down for several hours on 10 September and a Twitter feed claiming to be affiliated with an ‘anonymous’ hacker group.

Fox News The hacker later emailed the site, identified as Twitter user on3r, and verified the scammer’s identity through various Twitter claims.

A more recent attack on GoDaddy was confirmed by the company in May 2020, admitting that 28,000 customer hosting accounts were compromised in a security breach.

According to bleeding computerGoDaddy recently informed customers that an ‘unauthorized person’ has gained access to login information on the company’s hosting accounts.

GoDaddy says that although user accounts were used, there was no evidence that they were modified. It has since reset the passwords of those affected.

Also note that only the login and password information of the hosting accounts were compromised while the main accounts were not breached.

,

- Advertisement -
Mail Us For  DMCA / Credit  Notice

Recent Articles

Stay on top - Get the daily news in your inbox

Related Stories