[TheRecord] GoDaddy data breach impacts 1.2 million WordPress site owners

Internet infrastructure company GoDaddy said on Monday that a hacker gained access to the personal information of more than 1.2 million customers of its WordPress hosting service.

In documents filed with the US Securities and Exchange Commission earlier today, GoDaddy said it discovered the breach last week, on November 17, after noticing “suspicious activity” on its Managed WordPress hosting environment.

The subsequent investigation found that a hacker had access to its servers for more than two months, since at least September 6.

Based on current evidence, GoDaddy said the hacker gained access to the following information:

Up to 1.2 million active and inactive Managed WordPress customers had their email addresses and customer numbers exposed.The original WordPress Admin password that GoDaddy issued to customers when a site was created.For active customers, sFTP and database usernames and passwords were exposed.For a subset of active customers, the SSL private key was exposed.

GoDaddy said it already reset sFTP and database passwords exposed in the hack. It also reset the admin account password for customers who were still using the default one that GoDaddy issued when their sites were created.

The company said it’s still in the process of issuing and installing new SSL certificates for affected customers, a process that is a little bit more complicated than resetting passwords.

GoDaddy said it notified law enforcement and is working with an IT forensics firm to investigate the incident further. Customer notifications have also been sent out today, The Record has learned from two site owners.

“We are sincerely sorry for this incident and the concern it causes for our customers,” said Demetrius Comes, Chief Information Security Officer at GoDaddy.

This is the company’s second breach in the past two years, after a hacker accessed SSH accounts for some customers in early 2020, according to a letter [PDF] filed with state officials in May 2020.

The post GoDaddy data breach impacts 1.2 million WordPress site owners appeared first on The Record by Recorded Future.

Source: Read More (The Record by Recorded Future)

You might be interested in …

[SecurityWeek] Identity Fraud: A Major Growth Area for Criminals

All posts, Security Week

The lockdowns of 2020 led to an increase in online activity. This in turn led to an increase in online identity theft and fraud. The question asked for 2021 is whether 2020 was a temporary spike, or an ongoing change in fraudulent activity. read more Source: Read More (SecurityWeek RSS Feed)

Read More

[HackerNews] New UAF Vulnerability Affecting Microsoft Office to be Patched Today

All posts, HackerNews

Four security vulnerabilities discovered in the Microsoft Office suite, including Excel and Office online, could be potentially abused by bad actors to deliver attack code via Word and Excel documents. “Rooted from legacy code, the vulnerabilities could have granted an attacker the ability to execute code on targets via malicious Office documents, such as Word, […]

Read More

[ZDNet] Singapore cautions against marketing of cryptocurrency services to public

All posts, ZDNet

Monetary Authority of Singapore warns again about the high risks involved in cryptocurrency trading and instructs providers of such services not to publicly promote or advertise their offerings, as doing so may encourage consumers to trade on impulse. Source: Read More (Latest topics for ZDNet in Security)

Read More