GoDaddy Confirms 28,000 Hosting Accounts Breached!
One of the top domain registrars in the world notified its customers about an attack affecting thousands of hosting accounts.
GoDaddy’s Vice President for Corporate Communications told BleepingComputer in an official statement that roughly 28,000 customers’ hosting accounts were affected in the incident.
According to GoDaddy’s statement, the intrusion happened back in October 2019, when an “unauthorized individual” compromised the SSH usernames and passwords of some customers. GoDaddy claims that the incident affected only hosting accounts, not customers’ main accounts or personal information. The company has proactively reset logins and passwords of all affected hosting accounts.
The company noticed suspicious activities on some of its servers and reported the breach to officials in April 2020. About 28,000 accounts out of GoDaddy’s 19 million customers were affected. The company states that it hasn’t yet found any signs that the attackers modified or removed any files on the compromised accounts. Investigation of the case is ongoing
What to do?
- Affected customers should have already received an e-mail from GoDaddy with details about the incident and instructions on regaining access. GoDaddy claims passwords for the affected accounts were reset, however, all customers are advised to conduct an audit of their hosting account.
- GoDaddy is providing one year of its Website Security Deluxe and Express Malware Removal services for affected customers. These services allow you to scan your website for potential vulnerabilities.
Some of the links on the Website may be "affiliate links". This means if you click on the link and sign up or purchase an item, I may receive an affiliate commission at no cost to you. Please check Disclaimer for more info.