Major Data Breach at GoDaddy
It seems that GoDaddy uses the buckets at AmazonS3 to manage their hosting. One of these buckets was misconfigured by an AWS salesperson resulting in 31,000 servers being exposed to potential hackers.
The data exposed will also provide GoDaddy's competition with their pricing structure and could be a major coup for the competition to provide leverage to get similar pricing and overcome the advantage that GoDaddy gets on their pricing structure.
What is especially disturbing to me is that while GoDaddy was notified of the breach on June 17th, they did not remove access to the exposed files for 5 weeks. Their public response was that no current user data was exposed and only speculative models were exposed.
IF YOU ARE ON GODADDY you probably want to move to other hosting. WA hosting would be a good secure alternative.
Security online is a major concern. WA handles this with the utmost care. We are also on Amazon S3 servers though so the potential is always there.
More information can be found at these links:
https://www.engadget.com/2018/08/09/amazon-aws-error-exposes...
https://www.zdnet.com/article/aws-error-exposed-godaddy-serv...
I had a brief discussion with Kyle on this issue here is his response:
Recent Comments
30
Thanks for posting. We have a GoDaddy domain but we only host with WA...based on what you say, we should be okay.
We appreciate your watchdog vigilance!
Colette and Philip
Hi, Labman,
I totally understand where you are coming from. Wealthy Affiliate’s hosting is secure as the earth is round.
Thanks for posting,
Full regards,
Becky
This is the first I'm hearing of this as well. I'm only hosted here but have purchased domains from GoDaddy. Guess maybe some password changes are in order.
Yikes! I guess they failed to email me. I don't host with them, just used to have some domains, but you'd think an email to all customers would be in order!
That would be the right thing to do. My guess is that they are doing damage control instead of being proactive.
The cloud breaches are just the tip of the iceberg .. very concerning to me that so much data is being centralized this way as once in it seems to me the amount of data accessible is astronomical. I am sure the security layers are very good ... but every lock can be picked and every combination can be solved .. just a matter of time! :(
I absolutely agree this is why I posted it.
It never ceases to amaze me how many people are willing to give up their data to the cloud. Yes, it is convenient but an inadvertent slip by someone out of our control can cause a major problem.
Our faith in the invisible people behind these services is amazing ... there is so little trust in the world and yet people trust everything to these phantom people! :(
See more comments
Even though I don't have anything through GoDaddy it's still good to know about this so, thanks for the info and giving us all a heads up, Craig.