Top Class Actions’s website and social media posts use affiliate links. If you make a purchase using such links, we may receive a commission, but it will not result in any additional charges to you. Please review our Affiliate Link Disclosure for more information.
GoDaddy data breach overview:
- Who: GoDaddy has revealed that it suffered a multiyear data breach that the hosting company is linking back to previous data breach disclosures in March 2020 and November 2021.
- Why: GoDaddy is attributing the data breach to a multiyear campaign conducted by bad actors they believe are intentionally targeting hosting services.
- Where: Consumers nationwide use GoDaddy.
GoDaddy has revealed it suffered a multiyear data breach in which unknown hackers stole source code and installed malware on the company’s servers.
The hosting company has attributed the security incident to a breach of its cPanel shared hosting environment by a “sophisticated and organized group targeting hosting services like GoDaddy.”
“According to information we have received, their apparent goal is to infect websites and servers with malware for phishing campaigns, malware distribution and other malicious activities,” GoDaddy said.
GoDaddy said it discovered the data breach in December after it received customer reports that their websites were being used to redirect web users to random domains.
In a filing with the U.S. Securities and Exchange Commission, GoDaddy said its investigation determined the data breach has been part of a “multi-year campaign by a sophisticated threat actor group.”
GoDaddy links current data breach disclosure to previous data breaches from 2020, 2021
GoDaddy has linked the “campaign” back to previous breach disclosures the company made in March 2020 and November 2021.
In the November 2021 data breach, hackers reportedly used a compromised password to breach GoDaddy’s WordPress hosting environment, affecting 1.2 million Managed WordPress customers.
GoDaddy customers affected by the November 2021 breach had their email addresses, database credentials, WordPress Admin passwords, and other information exposed during the attack.
The company had previously notified 28,000 of its customers in March 2020 that they had been affected by a data breach that was attributed to a hacker who made unauthorized use of web hosting account credentials in October 2019.
GoDaddy said it has begun working with external cybersecurity forensic experts and law enforcement agencies around the world to try and determine how the breach could have occurred.
In other recent data breach news, LendUS agreed to a settlement last month to resolve claims the company failed to protect consumers during a 2021 data breach that compromised information that included Social Security numbers.
Have you been impacted by a GoDaddy data breach? Let us know in the comments.
Don’t Miss Out!
Check out our list of Class Action Lawsuits and Class Action Settlements you may qualify to join!
Read About More Class Action Lawsuits & Class Action Settlements:
25 thoughts onGoDaddy says it suffered multiyear data breach
IF THERE’S A LIST…
ADD MY NAME & MULTIPLE BUSINESSES TO IT!
Godaddy co$t me well over six figures financially, numerous lost customers, potential customers, supposedly secure email data that co$t myself and others, as well as phones that have and that are still hacked from February 2023, God Almighty himself only knows what other damage has been done, and if no one has noticed, I AM PO about it!
Nightmare. business email account and phone ported out! Disgusting customer service. Financially devastating personally and for our small business. severely compromised. Drained accounts. Everything is on lockdown now!
Please add me to your list
because my whole bank account was emptied because of this breach i ended up in the black web it was a nightmare
My Godaddy company account is compromised. Please add me to the Lawsuit.
I have been telling them about malicious redirects since 2020. Our site was hacked and redirected, then our domains were redirected. Printed copies of the chat support because I couldn’t believe how reckless they were. They simply didn’t care
please add me
add me
Please add me
Please add me
I had a go daddy account.