A Multi-Year Breach at GoDaddy Allowed Third-Party Takeovers of High-Profile Websites arstechnica.com

Dan Goodin, Ars Technica:

GoDaddy said on Friday that its network suffered a multi-year security compromise that allowed unknown attackers to steal company source code, customer and employee login credentials, and install malware that redirected customer websites to malicious sites.

GoDaddy is one of the world’s largest domain registrars, with nearly 21 million customers and revenue in 2022 of almost $4 billion. In a filing Thursday with the Securities and Exchange Commission, the company said that three serious security events starting in 2020 and lasting through 2022 were carried out by the same intruder.

GoDaddy says it “continue[s] to investigate the root cause of the incident”. The best time to get off GoDaddy was 2007; the next best time is now.