Last Monday it was announced that the web host GoDaddy had been hacked. Also other brands under GoDaddy were hit by the hack on the WordPress hosting company, it now appears. That’s according to the Vice President of Communications, Dan Rice. These subsidiaries include 123Reg, Domain Factory, Heart Internet, Host Europe, Media Temple and tsoHost. It is unclear how many additional victims are involved.
Rice: “A small number of active and inactive Managed WordPress users at these brands were affected by the security incident. No other brands were affected. The brands have already contacted their customers with specific details and recommended actions.”
The hosting companies told their customers that hackers gained access to their WordPress service and allowed them to make changes. This allowed them to change a site and its content. The companies also warned customers that stolen email addresses could be used for phishing attacks.
On Monday, November 22, 2021, GoDaddy sent a letter to the SEC that the company had been hacked. Hackers had access to the systems between September 6 and November 17.
During these two months, the hackers stole the following data:
- Emails and customer numbers from 1.2 million active and inactive GoDaddy customers.
- sFTP and database usernames and passwords of active customers. These passwords have now been reset.
- SSL private keys of some of the active customers. These keys are used to authenticate the website.
Now it appears that the brands under GoDaddy are also involved in the data breach. It is not yet clear exactly what data has been stolen from these companies. It is also still unknown how many victims are involved.
What is GoDaddy
GoDaddy’s Managed WordPress hosting is a service that lets people host a WordPress website without having to do the work themselves. In other words, GoDaddy and its brands maintain the website and the owner handles the content.
Catch up on more articles here
Follow us on Twitter here