GoDaddy had another privacy breach - reset your passwords!!
-
wrote on Nov 23, 2021, 12:09 AM last edited by d19dotca Nov 23, 2021, 12:20 AM
FYI - https://www.theverge.com/2021/11/22/22796729/godaddy-email-addresses-passwords-security-breach-managed-wordpress-ssl-keys - "Over a million GoDaddy WordPress customers had email addresses exposed in latest breach"
Looks like this was related to people using Managed WordPress services though from them, but I tend to use these as a great excuse to reset any account-related passwords with that provider regardless if you use that particular service or not. So a good idea to reset any GoDaddy passwords just to be safe.
Sharing here since GoDaddy is a service used by many and because Cloudron integrates with them. FWIW - I'd recommend not using them if possible as they have a bad reputation in the industry (which is an entirely different conversation lol). Not that nobody will ever be hacked, it's a "only a matter of when, not if" type thing, but GoDaddy has had so many over the years that it'd a bit embarrassing IMO and I'd intentionally avoid them wherever possible. Just my two cents though.
-
FYI - https://www.theverge.com/2021/11/22/22796729/godaddy-email-addresses-passwords-security-breach-managed-wordpress-ssl-keys - "Over a million GoDaddy WordPress customers had email addresses exposed in latest breach"
Looks like this was related to people using Managed WordPress services though from them, but I tend to use these as a great excuse to reset any account-related passwords with that provider regardless if you use that particular service or not. So a good idea to reset any GoDaddy passwords just to be safe.
Sharing here since GoDaddy is a service used by many and because Cloudron integrates with them. FWIW - I'd recommend not using them if possible as they have a bad reputation in the industry (which is an entirely different conversation lol). Not that nobody will ever be hacked, it's a "only a matter of when, not if" type thing, but GoDaddy has had so many over the years that it'd a bit embarrassing IMO and I'd intentionally avoid them wherever possible. Just my two cents though.
wrote on Nov 23, 2021, 10:51 AM last edited by@d19dotca I'd suggest not just changing passwords but completely ditching GoDaddy who are just a really shitty company.
-
@d19dotca I'd suggest not just changing passwords but completely ditching GoDaddy who are just a really shitty company.
I moved everything from GoDaddy to Uniregistry .... and then GoDaddy bought Uniregistry !! I was truly miffed !
I also hate Network Solutions who are most rapacious company I have ever known, and whose pricing model was designed along Moroccan bazaar principles.
-
I moved everything from GoDaddy to Uniregistry .... and then GoDaddy bought Uniregistry !! I was truly miffed !
I also hate Network Solutions who are most rapacious company I have ever known, and whose pricing model was designed along Moroccan bazaar principles.
wrote on Nov 23, 2021, 1:48 PM last edited by jdaviescoates Nov 24, 2021, 11:03 AM@timconsidine you'll be safe with gandi.net, they'd never sell themselves to someone like GoDaddy (indeed I doubt they'd ever sell themselves to anyone).
https://www.gandi.net/en-GB/no-bullshit
Joker.com are also good for domains, but not yet integrated with Cloudron.
-
wrote on Nov 24, 2021, 1:24 AM last edited by
FYI -- This breach just expanded to include tsoHost, Media Temple, 123Reg, Domain Factory, Heart Internet, and Host Europe.
-
FYI -- This breach just expanded to include tsoHost, Media Temple, 123Reg, Domain Factory, Heart Internet, and Host Europe.
wrote on Nov 24, 2021, 11:04 AM last edited by@jlx89 yep, thanks for sharing. I got this from Wordfence too
-
wrote on Dec 9, 2021, 11:42 PM last edited by
GoDaddy blocked the third party from its system. However, the attacker had already been using the compromised password since Sept. 6, giving them more than two months to do damage before they were discovered.