GoDaddy customers have been targeted in a new data breach. A total of 1.2 million WordPress managed customers accounts were affected by the hack, causing many individuals to be concerned about the security of their websites’ private information.
The incident was reported to the SEC (Securities and Exchange Commission) by GoDaddy.com. There was a security breach of the systems where WordPress servers are hosted and managed by the company. This may be a serious threat, given how widely used WordPress is for managing and creating websites.
Details on Breach:
- Up to 1.2 million active and inactive Managed WordPress customers had email addresses and customer numbers exposed. The exposure of email addresses presents a risk of phishing attacks.
- The original WordPress Admin password that was set at the time of provisioning was exposed. If those credentials were still in use, GoDaddy reset those passwords.
- For active customers, sFTP and database usernames and passwords were exposed. GoDaddy said it reset both passwords.
- For a subset of active customers, the SSL private key was exposed. GoDaddy says it is in the process of issuing and installing new certificates for those customers.
The sFTP credentials of active customers were stolen by the hackers. This is how files are sent back and forth. It was also discovered that the WordPress databases had their login credentials stolen. As a result, the attackers could have full access to the content of a website. It was discovered that some users had their SSL (HTTPS) private keys exposed, allowing an attacker to mimic a website and steal data.
Godaddy reset WordPress passwords and private keys, Godaddy has already taken the necessary precautions to prevent the attacker from further penetration. Godaddy will soon push fresh SSL certificates for customers.
On September 6, 2021, a person accessed GoDaddy’s computers using a hacked password. On November 17, 2021, the company claims it found about the breach. On November 22, 2021, it was registered with the SEC. This is an excellent response time from GoDaddy because it usually takes the firm some time to learn exactly what happened before filing anything.
Changing your passwords and monitoring your website is a must if you were using Godaddy to host your WordPress website.