CONFERENCE Cyber AI & Automation Summit - NOW LIVE
Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Cybercrime

GoDaddy Notifies Customers of Data Breach

GoDaddy has been notifying customers of a data breach that may have resulted in their web hosting account credentials getting compromised.

Headquartered in Scottsdale, Arizona, the Internet domain registrar and web hosting company claims to have over 19 million customers worldwide.

GoDaddy has been notifying customers of a data breach that may have resulted in their web hosting account credentials getting compromised.

Headquartered in Scottsdale, Arizona, the Internet domain registrar and web hosting company claims to have over 19 million customers worldwide.

The company submitted a data breach notice with the California Attorney General this week, revealing that its systems were breached in October 2019.

“We need to inform you of a security incident impacting your GoDaddy web hosting account credentials,” the accompanying customer notification letter reads.

The company said it started an investigation immediately after identifying suspicious activity on a subset of servers, which revealed that “an unauthorized individual” was able to access the credentials customers use to connect to SSH on their hosting account.

“We have proactively reset your hosting account login information to help prevent any potential unauthorized access; you will need to follow these steps in order to regain access,” GoDaddy says.

The unauthorized party was blocked from the company’s systems, but the investigation into the incident continues.

“We have no evidence that any files were added or modified on your account,” the web hosting provider says, but advises customers to conduct an audit of their hosting accounts.

Advertisement. Scroll to continue reading.

The Internet registrar also explains that the main GoDaddy.com customer accounts were not impacted by the incident, and that the information stored within those accounts was not accessed by the hackers. Only the hosting accounts were affected.

GoDaddy is providing impacted customers with one year of premium security services, which should help them identify any potential security vulnerabilities on their websites.

“We apologize for any inconvenience this may have caused. We have already taken and will continue to take measures to enhance our security in light of this incident,” the company says.

Related: Chegg Informs Employees of Data Breach

Related: Attack on San Francisco Airport Linked to Russian Hackers

Related: Slickwraps Discloses Data Breach

Related: GE Says Some Employees Hit by Data Breach at Canon

Written By

Ionut Arghire is an international correspondent for SecurityWeek.

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Don’t miss this Live Attack demonstration to learn how hackers operate and gain the knowledge to strengthen your defenses.

Register

Join us as we share best practices for uncovering risks and determining next steps when vetting external resources, implementing solutions, and procuring post-installation support.

Register

People on the Move

Video platform Vimeo has appointed Ryan Weeks as Chief Information Security Officer.

LPL Financial has welcomed Renana Friedlich as Chief Information Security Officer.

SSH Communications Security has appointed Pauli Haikonen as the company’s Chief Information Security Officer (CISO).

More People On The Move

Expert Insights

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest cybersecurity news, threats, and expert insights. Unsubscribe at any time.