• Skip to primary navigation
  • Skip to main content
  • Skip to footer
Logo of Agilient Security Consultants, Australia

Agilient Security Consultants Australia

Cybersecurity & Risk Management Specialists

Menu
  • Home
  • Industries
      • Aviation
      • Defence & Defence Industry
      • Government
      • Health & Hospitals
      • Corrections and Detention
      • Maritime
      • Aged Care Facilities
      • Mining, Oil & Gas
      • Public Venues & Events
      • Rail
      • Research and Education Industry
      • Telecommunications
      • Utilities
    • advice-colleagues-communication-newIndustries
  • Services
      • Cybersecurity
      • Protective Security
      • Business Resilience
      • Building Security Consultants
      • Security Audits
      • Pandemic Planning
      • Electronic Security
      • IT Disaster Recovery Plan
      • Security Consultants
      • CCTV and Security Cameras
      • Duress Alarms
      • Security Risk Assessment Consultants
      • Managed Security Service Provider
      • Protection against Vehicles as a Weapon
    • training-1Services
  • Solutions
    • banner-menuUnisys Solutions
    • CTO-Blog-110619-Header-GraphicLookingGlass Solutions
    • menu-bg-2Dell Technologies (RSA) Solutions
    • Sightline-Visualization-menuSightline Solutions
  • Resources
    • menumanagers-dealing-customer-agreTraining
    • working-together-newJoin The Tribe
    • Webinars_3-1.jpgUpcoming and Past Events
    • hacking-detected-shutterstock_newResources
  • Articles
  • About
    • About Us
      We are an Australian owned and operated security company specialising in risk, cybersecurity, protective security, crisis and business continuity management services.
    • frequently-asked-questions-smallFAQ’s
    • bg-menu-government-institutionsConsultant Registration
  • Contact Us
Contact Us

GoDaddy Data Breach Impacts 1.2 Million WordPress Users

You are here: Home / Security News / GoDaddy Data Breach Impacts 1.2 Million WordPress Users

On 17 November 2021, an unauthorised third-party access breach was discovered by domain registrar GoDaddy to its Managed WordPress hosting environment. The attacker used a compromised password to access the provisioning system in GoDaddy’s legacy code for Managed WordPress. The breach was discovered by Wordfence, a third-party security plugin for WordPress, and GoDaddy immediately blocked the account upon discovery. However, the attack had a large impact on the company.

Customers Affected Worldwide

Up to 1.2 million active and inactive Managed WordPress customers had their email address and customer number exposed, while for active customers, sFTP and database usernames and passwords were exposed.

The original WordPress admin password was exposed, and the SSL private key was also exposed for a subset of active customers.

Financial ramifications for GoDaddy

For GoDaddy, the financial implications were immediate, with shares in the company falling 1.6% after the incident was disclosed.

Robert Prigge, CEO of Jumio, said that this breach underlines the inherent weakness of relying on credentials to authenticate users. The breach was caused by unauthorized access via a compromised password, and it’s not enough to simply reset passwords and private keys. More secure alternatives should be addressed, such as multifactor/biometric authentication.

Demetrius Comes, GoDaddy’s CISO, announced that the incident began on 6 September, 2021. “We identified suspicious activity in our Managed WordPress hosting environment and immediately began our investigation with the help of an IT forensics firm and contacted law enforcement.”

Wordfence confirmed that at least six resellers of GoDaddy Managed WordPress were also affected by the breach: tsoHost, Media Temple, 123Reg, Domain Factory, Heart Internet, and Host Europe. GoDaddy refuted this and stated that only a small number of reseller customers were affected.

This is not the first attack on GoDaddy, with this breach following three similar attacks in the past three years. GoDaddy has become an easy target for hackers, with millions of people relying on their business for manage their websites.

For more information on how to stay secure and protect your organisation from cyber-attacks, contact us at Agilient.

Author: Mahdi Kobeissi, Cyber Security Consultant

Tweet
Share

Security News Agilient,  breach,  cyber attack,  cybersecurity,  data breach,  GoDaddy,  MFA

Looking for a security partner? Get in touch with Agilient.

Looking for practical and cost-effective security and risk solutions for your government department, agency or company? Speak with Australia’s leading senior security, risk and resilience experts.


Looking for a pandemic planning partner? Get in touch with Agilient.

Looking for practical and cost-effective risk management solutions for your government department, agency or company? Speak with Australia’s leading senior risk and emergency management experts.



Footer

Agilient is a proud member of

Ai Group Defence Council
Australian Industry & Defence Network
Australian Security Industry Association
Sydney Aerospace & Defence Interest Group

Company and Licensing Details:

ABN: 37 157 911 441
NSW Security Master Licence # 410783087
ACT Security Master Licence # 17502184
Vic Security Registration # 878-460-40S
Qld Security Firm Licence # 3834422

Join The Tribe

Sign up to receive our regular Agilient newsletter including the latest security, risk and resilience updates

Sign up now

Copyright © 2022 Agilient – Level 14, 275 Alfred St, North Sydney NSW 2060 Australia – 1300 341 692