Tag Archives: attack

Explained | The multi-year attack on GoDaddy servers and its impact  

GoDaddy is one of the largest domain registrar and web hosting platforms.

GoDaddy is one of the largest domain registrar and web hosting platforms.
| Photo Credit: Special Arrangement

The story so far: On 16 February, an unauthorised third-party gained access to GoDaddy servers in its cPanel shared hosting environment, the company shared in a blog post. Attackers installed malware on servers causing intermittent redirection of customer websites to malicious sites leading to increased chances of successful phishing campaigns. Attackers also obtained pieces of code related to some services used by the company.

What does GoDaddy do?

GoDaddy is one of the largest domain registrar and web hosting platforms. The company offers services like eCommerce solutions, SSL certificates, professional business emails, web servers, and website builders. Its WordPress shared…


Source link

Deserialized web security roundup: Twitter 2FA backlash, GoDaddy suffers years-long attack campaign, and XSS Hunter adds e2e encryption


Jessica Haworth

24 February 2023 at 13:09 UTC

Updated: 24 February 2023 at 13:15 UTC

Your fortnightly rundown of AppSec vulnerabilities, new hacking techniques, and other cybersecurity news

witter 2FA backlash, GoDaddy suffers years-long attack campaign, and XSS Hunter adds e2e encryption

Twitter faced further criticism this week when Elon Musk’s social networking platform announced SMS-based 2FA will only be available to paying customers going forward.

The social media site historically enabled two-factor authentication (2FA) to all users, providing they connected their mobile phone number to their account.

This week, however, users were warned that this security option would no longer be available to users who did not pay for verification.

Of course, this sparked huge backlash online,…


Source link

Opinion | One Year After the Jan. 6 Attack, Parler’s C.E.O Grapples With Big Tech and Trump

After an angry mob attacked the Capitol last year and users on the right-leaning social network Parler organized, shared footage and called to “burn D.C. to the ground,” Kara Swisher grilled the platform’s co-founder and C.E.O., John Matze. The interview was cited in Apple’s decision to take Parler off its App store and Amazon’s decision to suspend web hosting service for Parler. Google also booted the platform off its Play Store. Parler effectively went offline because of these three moves, and Matze lost his job.

[You can listen to this episode of “Sway” on Apple, Spotify, Google or wherever you get your podcasts.]

A year after Jan. 6, and with Parler back online, Swisher interviews the platform’s new chief executive, George Farmer. He’s bent on reviving Parler,…


Source link

Web hosting service Exabytes hit by ransomware attack, still restoring services

PETALING JAYA: Exabytes, a Penang-based web hosting service, was hit by a ransomware attack over the weekend, though it claims most of its services have since been restored.

The ransomware, which occurred at 5am on Sept 18, disrupted its services, mainly its Windows VPS (virtual private server) and Windows hosting services.

In a post on 4.23am on Sept 19, the company said it had concluded a management meeting and will initiate its recovery plan immediately.

The company’s data restoration effort stands at 80% as of 3pm on Sept 20, said Exabytes CEO and founder Chan Kee Siak.

“The matter is under investigation now and we are unable to provide any further information on this at this moment.


Source link

Illinois Man Convicted of Federal Criminal Charges for Operating Subscription-Based Computer Attack Platforms | USAO-CDCA

          LOS ANGELES – An Illinois man was found guilty today by a federal jury for running websites that allowed paying users to launch powerful distributed denial of service, or DDoS, attacks that flood targeted computers with information and prevent them from being able to access the internet.

          Matthew Gatrel, 32, of St. Charles, Illinois, was found guilty of three felonies: one count of conspiracy to commit unauthorized impairment of a protected computer, one count of conspiracy to commit wire fraud, and one count of unauthorized impairment of a protected computer.

          According to evidence presented at his nine-day trial, Gatrel owned and operated two DDoS facilitation websites: DownThem.org and AmpNode.com. DownThem sold…


Source link