Author Topic: 28,000 GoDaddy accounts compromised  (Read 677 times)

ergophobe

  • Inner Core
  • Hero Member
  • *
  • Posts: 5612
    • View Profile
28,000 GoDaddy accounts compromised
« on: May 07, 2020, 01:55:43 AM »
Go Daddy!

No rest for the wicked. Hackers exploit SSH vulnerability and compromise 28,000 GoDaddy accounts. Couldn't have happened to a nicer registrar or host.

https://www.wordfence.com/blog/2020/05/28000-godaddy-hosting-accounts-compromised

Quote
SSH, while extremely secure if configured correctly, can allow logins with either a username/password combination, or a username and a public/private key pair. In the case of this breach, it appears likely that an attacker placed their public key on the affected accounts so that they could maintain access even if the account password was changed.

gm66

  • Inner Core
  • Hero Member
  • *
  • Posts: 1370
    • View Profile
Re: 28,000 GoDaddy accounts compromised
« Reply #1 on: May 07, 2020, 08:15:23 AM »
... Couldn't have happened to a nicer registrar or host.

I assume that's sarcasm? I've had UK clients that have had terrible experiences with them.
Civilisation is a race between disaster and education ...

ergophobe

  • Inner Core
  • Hero Member
  • *
  • Posts: 5612
    • View Profile
Re: 28,000 GoDaddy accounts compromised
« Reply #2 on: May 07, 2020, 04:17:48 PM »
Yes. I've always considered GoDaddy one of the bad actors on the web who survived and expanded through publicity stunts and Carl's Jr style ads while offering crap services and engaging in shady practices. I would have to check, but I think that like Network Solutions, they were one of the registrars that practiced front running for, ahem, the good of their customers.

gm66

  • Inner Core
  • Hero Member
  • *
  • Posts: 1370
    • View Profile
Re: 28,000 GoDaddy accounts compromised
« Reply #3 on: May 08, 2020, 12:08:54 AM »
Low prices, low performance. Great marketing here in the UK though, and assumedly America.

Civilisation is a race between disaster and education ...