ALERT GoDaddy Breach

wardmundy

wardmundy

Nerd Uno
Joined
Oct 12, 2007
Messages
20,217
Reaction score
5,974
From Wordfence:

GoDaddy announced this morning that they have been breached. Our team took a deep dive into the breach and found that GoDaddy appears to have stored passwords in plaintext, or in a format that could be reversed back into plaintext, which is not an industry best practice.

We confirmed this by signing into a GoDaddy Managed WordPress Hosting Account and verifying that we were able to view our own sFTP password. That means the attacker didn't need to crack the passwords and could likely retrieve them directly.

According to GoDaddy's own SEC filing: "For active customers, sFTP and database usernames and passwords were exposed."

The attacker had access to GoDaddy's systems for over two months before they were discovered.
 
mbellot said:
News like this really makes me think they blew the acronym.

IoT should have been IoC

Internet of Cards....

Just waiting for a mild breeze to blow the whole thing over.
Click to expand...
The media didn't coin the phrase Internet of Things. It's a phrase that as been around since the early '80s by computer engineers and scientists.
 
Couldn't of happened to a nicer company. I had been reading they will steal domains if you wait too long to purchase. They decide to go ahead and purchase, and the domain is already taken and registered with GoDaddy, but the domain is now for sale in the 4 digit range.
 
KNERD said:
Couldn't of happened to a nicer company. I had been reading they will steal domains if you wait too long to purchase. They decide to go ahead and purchase, and the domain is already taken and registered with GoDaddy, but the domain is now for sale in the 4 digit range.
Click to expand...
I've heard the same
 
Namecheap, (cheap and cheerful) and acme.sh compliant ( mostly)
 
Interesting, I wasn't aware that cloudflare sold domains.

I am aware that moving your Name Service to Cloudflare for non commercial usage is currently free. (not the same thing though)

(But cloudflare is also DNS-01 compliant with "acme.sh", imagine, no more inscure Firewall BS rules to get certs ;-) )
 
Last edited:
Thank you @wardmundy for posting this info. Although I've been a longtime customer of godaddy no communication whatsoever in any shape or form reached me regarding the incident. That's maybe because a little over a year ago I moved my domains to another registrar whose web portal looked less like a billboard. So, my account was dormant but it had a valid credit card entry, and some cash credit.
Anyway, I went to check my godaddy account page where the data looked untouched, but the access logs showed tons of login attempts from many different regions over the last several weeks.
So, to be on the safe side, I closed my account and called the credit card company. To my surprise they didn't know anything about the breach, but they put a watch on all transactions right away. Then several hours later they contacted me to let me know that they were changing my account number "like they were doing to all those who were affected by the breach".
 
You must log in or register to reply here.

Members online

No members online now.
Total: 39 (members: 0, guests: 39)

Latest Posts

Forum statistics

Threads
26,688
Messages
174,412
Members
20,259
Latest member
Fadeek86
Get 3CX - Absolutely Free!

Link up your team and customers Phone System Live Chat Video Conferencing

Hosted or Self-managed. Up to 10 users free forever. No credit card. Try risk free.

3CX
A 3CX Account with that email already exists. You will be redirected to the Customer Portal to sign in or reset your password if you've forgotten it.
Verify your Email

Check your inbox!

We’ve sent you an email. Click on the button in the email body to verify your email address – (if you can not find it, check your spam folder).

Upon verification you will be directed to the 3CX setup wizard.

Back
Top