GoDaddy was attacked by the company

GoDaddy has admitted that it was attacked. The attackers managed to deceive GoDaddy employees who worked in the domain registration department. In this way, they redirected the traffic of emails and the web on various cryptocurrency trading platforms to their own websites last week.

The Krebs on Security page he says that the attack began on November 13 with an attack on liquid.com.

“Hosting provider GoDaddy, which manages one of our primary domains, accidentally handed over control of the domain to a user," Liquid CEO Mike Kayamori said in a post on the company's blog.

"This allowed the malicious user to modify the DNS and take control of a number of internal email accounts. Thus it managed to partially endanger our infrastructure and gain access to store records.

In the early morning hours of November 18, 2020 (CET), the υπηρεσία NiceHash ανακάλυψε ότι ορισμένες από τις ρυθμίσεις για των DNS του domain που είχε στην GoDaddy είχαν αλλάξει. Έτσι οι κακόβουλοι χρήστες ανακατευθύνθηκαν το email και την κυκλοφορία του domain. Η NiceHash πάγωσε όλες τις συναλλαγές για περίπου 24 ώρες μέχρι να επαληθεύσει ότι οι ρυθμίσεις του domain είχαν επαναφερθεί στην αρχική τους κατάσταση. “Μέχρι στιγμής δεν φαίνεται να έχουν διαρρεύσει email, or personal information, but we recommend changing your password and enabling 2FA security," the company said on its blog.

Many cryptocurrency platforms were probably attacked by the same group. Domains include: Bibox.com, Celsius.network and Wirex.app.

GoDaddy told KrebsOnSecurity that "a small number of its clients' domains had changed" when a "limited number" of GoDaddy employees fell victim to a social engineering scam.

GoDaddy is often victim of attacks.

iGuRu.gr The Best Technology Site in Greecefgns

every publication, directly to your inbox

Join the 2.100 registrants.

Written by giorgos

George still wonders what he's doing here ...

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).