GoDaddy 發現安全漏洞 28,000 寄存帳號受影響

TH30

著名域名註冊和網站寄存服務商 GoDaddy，昨日向網站 BleepingComputer 承認出現保安漏洞，導致 28,000 名使用寄存服務的顧客資料外洩。GoDaddy 已經透過電郵通知受影響客戶，表示有「未獲授權人士」取得了他們的登入資料。

GoDaddy 表示現時未有證據，受影響帳戶的檔案受到修改，系統亦已經阻擋任何未經授權人士。GoDaddy 及後發聲明進一步解釋事件，表示有 SSH 檔案遭到修改，導致部份網頁寄存服務帳號資料被盜。為了保護其餘 1,900 萬用戶，GoDaddy 已經將有問題的檔案從他們的平台移除。
        　　
https://unwire.hk/2020/05/07/go-daddy-confirms-security-breach/tech-secure/

GoDaddy has admitted to BleepingComputer that 28,000 customers’ hosting accounts had been compromised in a security breach. The company notified affected users through an email that an “unauthorized individual” obtained access to their login information. It added that it found no evidence that the compromised accounts’ files had been modified in any way and that it had already blocked the unauthorized individual from its systems.

In a statement sent to the publication, GoDaddy revealed that the affected web hosting accounts had been exposed through an altered SSH file, which it has already removed from its platform to protect the rest of its 19 million users. The security incident took place on October 19th, 2019 and was discovered on April 23rd, 2020 after the company’s security team detected suspicious activity on some of its servers.

https://www.engadget.com/go-daddy-confirms-security-breach-120534835.html