GoDaddy Confirms Data Breach, Explains How Hackers Stole Data

GoDaddy has revealed that cybercriminals accessed its systems, installed malware on its network and stole parts of its source code in a years-long intrusion.

The company said that it is working with several law enforcement agencies across the world in addition to forensic experts to further investigate the issue.

“We have evidence and have been confirmed by law enforcement that this incident was perpetrated by a sophisticated and organized group targeting hosting services such as GoDaddy,” the company said in a statement on Friday.

The hackers’ goal was to infect websites and servers with malware for phishing campaigns, malware distribution, and other malicious activities.

GoDaddy revealed in a US Securities and Exchange Commission (SEC) filing that it believes the hackers are the same group it found inside the company’s network in March 2020.

It became aware of the intrusion in December 2022 when GoDaddy began receiving a small number of customer complaints about intermittent redirects to their websites.

Upon receiving these complaints, it investigated and found that the intermittent redirects were occurring to random websites hosted on its cPanel shared hosting servers and were not easily reproducible by GoDaddy, even That too on the same website”.

Once the company confirmed the intrusion, it remedied the situation and implemented security measures in an effort to prevent future infections.

It added, ‘We are using the lessons learned from this incident to enhance the security of our systems and protect our customers and their data.’

In November 2021, global web hosting platform GoDaddy revealed that the sensitive information of around 1.2 million of its WordPress customers had been compromised.

GoDaddy warned users that this vulnerability could put users at greater risk of phishing attacks.

read all Latest Tech News Here

(This story has not been edited by News18 staff and is published from a syndicated news agency feed)