Web hosting provider GoDaddy has revealed that a data breach led to malware being installed on some of its services.
Back in December 2022, they received customer complaints about websites being redirected to malicious sites. It was later discovered an unauthorized third party had gained access to servers hosted in its cPanel environment.
GoDaddy said the objective of the intrusions was to “infect websites and servers with malware for phishing campaigns, malware distribution, and other malicious activities.”
This is not the first time the company has faced security breaches. In 2020 the login credentials of close to 28,000 customers were compromised, and in 2021 a rogue actor accessed its Managed WordPress (MWP), affecting over a million customers.
GoDaddy says it has added security measures to stop similar attacks in the future, but the latest security breach may now cast serious doubts on the hosting and domain services it offers.