Tag Archives: Breach

3

Sensitive patient data was shared on WhatsApp by at least 26 healthcare staff members in Scotland, resulting in over 500 verified instances of data disclosure. The data shared included names, addresses, images, videos, and screenshots, as well as clinical information of the individuals involved. However, the most concerning aspect was the unauthorized disclosure of personal data to an individual who was not part of the medical staff, and had been mistakenly added to the WhatsApp group.

The Information Commissioner’s Office (ICO), the UK’s data protection authority, announced this incident and has warned the responsible healthcare authority, NHS Lanarkshire. This organization serves a population of over 652,000 people in the council areas of North Lanarkshire and South…

Huge chunks of the internet were redirecting to malware-spewing websites in the latest of a series of attacks on web giant GoDaddy over a three-year period.

So if you’ve had complaints from visitors that your site redirects to malicious pages, the problem might not be with you or your plug-ins. So how did this happen? How can you protect yourself from harmful redirects?

What Is GoDaddy?

If you want to set up a website for either personal or professional use, there are a few big providers who offer both registration and hosting packages to make your life easier. Of these, GoDaddy is one of the largest and boasts a 19.61 percent market share, according to Enlyft. With reasonably priced plans and a range of features including 24×7 security monitoring, GoDaddy regularly makes…

GoDaddy data breach overview: 

• Who: GoDaddy has revealed that it suffered a multiyear data breach that the hosting company is linking back to previous data breach disclosures in March 2020 and November 2021. 
• Why: GoDaddy is attributing the data breach to a multiyear campaign conducted by bad actors they believe are intentionally targeting hosting services. 
• Where: Consumers nationwide use GoDaddy. 

GoDaddy has revealed it suffered a multiyear data breach in which unknown hackers stole source code and installed malware on the company’s servers. 

The hosting company has attributed the security incident to a breach of its cPanel shared hosting environment by a “sophisticated and organized group targeting hosting services like…

GoDaddy also faced security events from 2020 to 2022, which it shared were carried out by the same attacker.
| Photo Credit: Special Arrangement

An unauthorised third party gained access to GoDaddy, a web host, domain registrar and website building platform’s, servers in its cPanel shared hosting environment and installed malware causing intermittent redirection of customer websites, the platform shared in a blog post.

The breach was first discovered in December 2022 after the platform investigated customer complaints about their sites being used to redirect to random domains.

The company claims that a sophisticated threat actor group, among other things, installed malware on its systems and obtained pieces of code related to some services in the Dec. 2022 attack.

The company also…

An unknown threat actor has been sitting in GoDaddy’s systems for years, installing malware, stealing source code, and attacking the company’s customers, the web hosting giant confirmed in an SEC filing late last week. 

Per the filing (opens in new tab) (via BleepingComputer (opens in new tab)), the attackers breached GoDaddy’s cPanel shared hosting environment and used that as a launch pad for further attacks. The company described the hackers as a “sophisticated threat actor group”.