- GoDaddy security breach exposes WordPress users’ data.
- The company shares fell about 1.6% in early trading.
- An unauthorized person used a compromised password to get access to GoDaddy’s systems.
Customer information including email addresses, account numbers, and passwords related to more than one million GoDaddy users was exposed in a data breach, the company said in a regulatory filing. The breach affected users of WordPress, a web-based content management system used by bloggers and websites. The exposure of account passwords could put GoDaddy users at risk of having their accounts taken over by cybercriminals.
The breach also exposed users’ sFTP credentials (used for file sharing) and the username and passwords of their WordPress databases. Some security certificates (https) may also compromise, which if abused, can allow an attacker to impersonate a customer’s website or services.
The company shares fell about 1.6% in early trading. An unauthorized person used a compromised password to get access to GoDaddy’s systems. The breach was discovered on Nov. 17 when GoDaddy found an unauthorized third-party was accessing their Managed WordPress hosting environment. WordPress is a free and open-source content management system that allows users to create a website easily.
“We identified suspicious activity in our Managed WordPress hosting environment and immediately began an investigation with the help of an IT forensics firm and contacted law enforcement,” GoDaddy’s chief information security officer Demetrius Comes said in a filing.
How can I protect myself from data leaks?
To safeguard yourself from possible threats, change the password of your account and the email address associated with the account and enable two-factor authentication on all your official accounts. The password should ideally be a strong one and you could save it in a strong password manager for auto-fill. Also, enable two-factor authentication (2FA) wherever available.
GoDaddy said its investigation remains ongoing and that it’s reaching out to affected customers. Customers can also reach the company directly through its online help center.
5 steps for protection against hackers
Your online presence is everything. Take the right steps to protect your visitors from malware with Website Security tools.
- Select the right Website Security Plan for you.
- Make regular website backups.
- Practice password security.
- Install an SSL certificate.
- Update WordPress.
Thanks for Reading!!