GoDaddy Breached Again!


Nerd of Fortune – GoDaddy was BREACHED AGAIN and GoDaddy claims it didn’t know until 2 days ago. I have several clients still hosting with GoDaddy (had 300+ 3 years ago but recommended all migrate AWAY from NoDaddy, um GoDaddy.) but have slowly had them all move to other hosting companies that offer better service & support (NoDaddy has really lost its way). Aside from a handful, and 1 site I left on a managed WordPress account that I use for demos, trying things and playing around. THAT website went down – LOL – thanks to Godaddy’s chaotic reaction to info they likely knew way back when, anyway, it’s being migrated away from Nodaddy as I type this article.

So, officially, hosting giant GoDaddy reported the data breach, and warns that data on 1.2 million customers may have been accessed.

In a filing with the Securities and Exchange Commission, GoDaddy’s chief information security officer Demetrius Comes said the company detected unauthorized access to its systems where it hosts and manages its customers’ WordPress servers. WordPress is a web-based content management system used by millions to set up blogs or websites. GoDaddy lets customers host their own WordPress installs on their servers. They have an antiquated managed WordPress system, whereas companies like Site Ground, BlueHost, Network Solutions and many others, out perform GoDaddy in EVERY respect.

Now, GoDaddy was the industry leader, say maybe until around 2013-2014 or so. But this recent incident, other past ones, their steady decline in service and out-of-date hosting infrastructure has REALLY taken a toll on any credibility GoDaddy once had. Hardly the company Bob Parsons founded. I know, I worked there…..

GoDaddy said the unauthorized person used a compromised password to get access to GoDaddy’s systems around September 6. GoDaddy said it discovered the breach last week on November 17 (MM HM – queue head shake). It’s not clear if the compromised password was protected with two-factor authentication.

GoDaddy Stock Has Been Declining

The filing said that the hack or breach affects 1.2 million active and inactive managed WordPress users, who had their email addresses and customer numbers exposed. GoDaddy said this exposure could put users at greater risk of phishing attacks. The web host also said that the original WordPress admin password created when WordPress was first installed, which could be used to access a customer’s WordPress server, was also exposed.

The company said that active customers had their sFTP credentials (for file transfers), and the usernames and passwords for their WordPress databases, which store all the user’s content, exposed in the breach. In some cases, the customer’s SSL (HTTPS) private key was exposed, which if abused could allow an attacker to impersonate a customer’s website or services.


Websites Packages from Network Solutions®!
Take your business mobile with the nsMobile™ suite at Network Solutions!

GoDaddy said it’s reset customer WordPress passwords and private keys, and is in the process of issuing new SSL certificates.

The web host has more than 20 million customers worldwide. Dan Race, a spokesperson for GoDaddy, declined to comment citing the company’s ongoing investigation.

GoDaddy has NOT stated how or even IF they plan on compensating any customers for downtime. In some cases, THOUSANDS of websites remain DOWN (including mine – LOL, but it’s moving today, and 5 of my clients’ sites. Will propose they move also). Talk of a CLASS ACTION LAWSUIT has popped up in Website Owners’ Forums around the web. Law Firms are eager to step in and offer up their respective services.

Well, if you need any recommendations on BETTER hosting environments than GoDaddy’s (there are MANY!), check out the list below:

  • Site Ground: Site Ground is AWESOME! I, personally, have NEVER had an issue, ever, aside from a minor billing thing that was my fault – LOL. Can’t say enough….
  • BlueHost: I have a few clients using BlueHost. They are really pretty good. Easy to use interfaces, good speeds and fun dev tools. 
  • NameCheap: the oldest registrar online, NameCheap is pretty cool. Good prices and pretty solid service. Better than NoDaddy…
  • Network Solutions: Also based in the Phoenix area, Network Solutions is famous for collecting unhappy GoDaddy employees. A pilgrimage of former GoDaddy employees have filled the racks of local hosting and tech companies in the area in the past few years. Network Solutions is their biggest competitor in the area.
  • Big Commerce: It’s worth mentioning Big Commerce as their service, support and product are EXCELSIOR!!! They are really an Ecommerce platform that creates beautiful and completely customized online stores with built-in features such as search engine optimization, marketing tools, analytics and hundreds of integrated apps. 

Well, that’s it for interesting hosting news today. Had to share as this GODADDY BREACH is likely the last straw for many UNHAPPY GODADDY CUSTOMERS, a demographic that seems to be ever increasing.

Now, I should point out there are positive points to Godaddy and some of their tools. Godaddy Pro, for instance, is awesome. At least, I like it.

If you don’t know, GoDaddy Pro and The Hub are great tools & the handy CRM is nice – one may organize, monitor and update many different websites at once. It’s a great tool that Godaddy makes available, for FREE. Now, if GoDaddy would just maybe go back to the good ‘ole days when tech support actually supported (and they knew what they were doing), when customers’ site performance was a primary goal and customer service was forefront……..COME ON GODADDY! YOU CAN DO IT!!!

nerd of fortune, very handsome

I am the Nerd of Fortune. I have been hustling from home (part-time) for about 15 years & working exclusively from home for several years – and loving it! I am a firm believer in making ‘working from home’ a success for everyone…

News / by

Post Author: