Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.


    Cloudron Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular

    GoDaddy had another privacy breach - reset your passwords!!

    Off-topic
    5
    7
    267
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • d19dotca
      d19dotca last edited by d19dotca

      FYI - https://www.theverge.com/2021/11/22/22796729/godaddy-email-addresses-passwords-security-breach-managed-wordpress-ssl-keys - "Over a million GoDaddy WordPress customers had email addresses exposed in latest breach"

      Looks like this was related to people using Managed WordPress services though from them, but I tend to use these as a great excuse to reset any account-related passwords with that provider regardless if you use that particular service or not. So a good idea to reset any GoDaddy passwords just to be safe. 🙂

      Sharing here since GoDaddy is a service used by many and because Cloudron integrates with them. FWIW - I'd recommend not using them if possible as they have a bad reputation in the industry (which is an entirely different conversation lol). Not that nobody will ever be hacked, it's a "only a matter of when, not if" type thing, but GoDaddy has had so many over the years that it'd a bit embarrassing IMO and I'd intentionally avoid them wherever possible. Just my two cents though.

      --
      Dustin Dauncey
      www.d19.ca

      jdaviescoates 1 Reply Last reply Reply Quote 4
      • jdaviescoates
        jdaviescoates @d19dotca last edited by

        @d19dotca I'd suggest not just changing passwords but completely ditching GoDaddy who are just a really shitty company.

        timconsidine 1 Reply Last reply Reply Quote 2
        • timconsidine
          timconsidine @jdaviescoates last edited by

          @jdaviescoates 💯 %

          I moved everything from GoDaddy to Uniregistry .... and then GoDaddy bought Uniregistry !! I was truly miffed !

          I also hate Network Solutions who are most rapacious company I have ever known, and whose pricing model was designed along Moroccan bazaar principles.

          jdaviescoates 1 Reply Last reply Reply Quote 1
          • jdaviescoates
            jdaviescoates @timconsidine last edited by jdaviescoates

            @timconsidine you'll be safe with gandi.net, they'd never sell themselves to someone like GoDaddy (indeed I doubt they'd ever sell themselves to anyone).

            https://www.gandi.net/en-GB/no-bullshit

            Joker.com are also good for domains, but not yet integrated with Cloudron.

            1 Reply Last reply Reply Quote 2
            • J
              JLX89 last edited by

              FYI -- This breach just expanded to include tsoHost, Media Temple, 123Reg, Domain Factory, Heart Internet, and Host Europe.

              jdaviescoates 1 Reply Last reply Reply Quote 3
              • jdaviescoates
                jdaviescoates @JLX89 last edited by

                @jlx89 yep, thanks for sharing. I got this from Wordfence too

                https://www.wordfence.com/blog/2021/11/godaddy-tsohost-mediatemple-123reg-domain-factory-heart-internet-host-europe/

                1 Reply Last reply Reply Quote 1
                • S
                  Stephanie_Sy last edited by

                  GoDaddy blocked the third party from its system. However, the attacker had already been using the compromised password since Sept. 6, giving them more than two months to do damage before they were discovered.

                  1 Reply Last reply Reply Quote 2
                  • First post
                    Last post
                  Powered by NodeBB