Tag Archives: multiyear

Explained | The multi-year attack on GoDaddy servers and its impact  

GoDaddy is one of the largest domain registrar and web hosting platforms.

GoDaddy is one of the largest domain registrar and web hosting platforms.
| Photo Credit: Special Arrangement

The story so far: On 16 February, an unauthorised third-party gained access to GoDaddy servers in its cPanel shared hosting environment, the company shared in a blog post. Attackers installed malware on servers causing intermittent redirection of customer websites to malicious sites leading to increased chances of successful phishing campaigns. Attackers also obtained pieces of code related to some services used by the company.

What does GoDaddy do?

GoDaddy is one of the largest domain registrar and web hosting platforms. The company offers services like eCommerce solutions, SSL certificates, professional business emails, web servers, and website builders. Its WordPress shared…


Source link

GoDaddy says it suffered multiyear data breach

GoDaddy Inc. logo is seen on a mobile phone and a computer screen, representing the GoDaddy data breach.
(Photo Credit: viewimage/Shutterstock)

GoDaddy data breach overview: 

  • Who: GoDaddy has revealed that it suffered a multiyear data breach that the hosting company is linking back to previous data breach disclosures in March 2020 and November 2021. 
  • Why: GoDaddy is attributing the data breach to a multiyear campaign conducted by bad actors they believe are intentionally targeting hosting services. 
  • Where: Consumers nationwide use GoDaddy. 

GoDaddy has revealed it suffered a multiyear data breach in which unknown hackers stole source code and installed malware on the company’s servers. 

The hosting company has attributed the security incident to a breach of its cPanel shared hosting environment by a “sophisticated and organized group targeting hosting services like…


Source link

Cybercriminals installed malware on GoDaddy servers in a multi-year breach 

GoDaddy also faced security events from 2020 to 2022, which it shared were carried out by the same attacker.

GoDaddy also faced security events from 2020 to 2022, which it shared were carried out by the same attacker.
| Photo Credit: Special Arrangement

An unauthorised third party gained access to GoDaddy, a web host, domain registrar and website building platform’s, servers in its cPanel shared hosting environment and installed malware causing intermittent redirection of customer websites, the platform shared in a blog post.

The breach was first discovered in December 2022 after the platform investigated customer complaints about their sites being used to redirect to random domains.

The company claims that a sophisticated threat actor group, among other things, installed malware on its systems and obtained pieces of code related to some services in the Dec. 2022 attack.

The company also…


Source link

GoDaddy’s multi-year security breach a ‘damaging blow’ to user confidence

GoDaddy’s latest data breach revelations could deal a serious blow to user confidence, security experts have warned.

The US firm revealed last week that it had fallen victim to a ‘multi-year’ security incident which invoilved hackers stealing source code and installing malware that redirected hosted sites to malicious pages.  

In an SEC filing on 16 February, the domain hosting service confirmed that several security incidents spanning nearly three years were carried out by the same threat actor(s).  

GoDaddy said that, in December, an initial investigation into customer complaints that their websites were being “intermittently redirected” found that an unauthorised third party had gained access to servers in the company’s cPanel shared hosting environment.  

Attackers were…


Source link