GoDaddy notified some of its customers that an unauthorized party used their web hosting account credentials to connect to their hosting account via SSH
“We have no evidence that any files were added or modified on your account,” the company said while omitting evidence that files could have been viewed and exfiltrated.
“The unauthorized individual has been blocked from our systems, and we continue to investigate potential impact across our environment.”
GoDaddy said the breach did not impact the “main GoDaddy.com customer account” and that any information within that account was not accessed.
Additionally, the company assured the affected users that only their hosting accounts were affected as part of the incident, while their main GoDaddy account was not accessible to the attackers.
“We have proactively reset your hosting account login information to help prevent any potential unauthorized access,” GoDaddy added.
Even though the breach notification letter’s wording doesn’t point to the exact reason behind this incident, GoDaddy’s message and offer of free services show that this was not likely the customers’ fault.
“On behalf of the entire GoDaddy team, we want to say how much we appreciate your business and that we sincerely regret this incident occurred. We are providing you one year of Website Security Deluxe and Express Malware Removal at no cost,” the letter reads.
Bijay Pokharel
Related posts
Recent Posts
Subscribe
Cybersecurity Newsletter
You have Successfully Subscribed!
Sign up for cybersecurity newsletter and get latest news updates delivered straight to your inbox. You are also consenting to our Privacy Policy and Terms of Use.