GoDaddy hosting security breach (hacked)

[Bapun]

GoDaddy notified some of its customers that an unauthorized party used their web hosting account credentials to connect to their hosting account via SSH.

The security incident that took place on October 19, 2019, was discovered on April 23, 2020, after the company's security team discovered an altered SSH file in GoDaddy's hosting environment and suspicious activity on a subset of GoDaddy's servers.

GoDaddy is the world’s largest domain registrar and a web hosting company that provides services to roughly 19 million customers around the world.

Hosting account passwords reset

"We have proactively reset your hosting account login information to help prevent any potential unauthorized access," GoDaddy added.

GoDaddy notifies users of breached hosting accounts

 

[Bapun]

While GoDaddy discovered the security breach in early December 2022 following customer reports that their sites were being used to redirect to random domains, the attackers had access to the company's network for multiple years.

GoDaddy: Hackers stole source code, installed malware in multi-year breach

Web hosting giant GoDaddy says it suffered a breach where unknown attackers have stolen source code and installed malware on its servers after breaching its cPanel shared hosting environment in a multi-year attack.

www.bleepingcomputer.com