Phish of GoDaddy Employee Jeopardized Escrow.com, Among Others

2020-04-01 03:30

The incident gave the phisher the ability to view and modify key customer records, access that was used to change domain settings for a half-dozen GoDaddy customers, including transaction brokering site escrow.com.

In a statement shared with KrebsOnSecurity, GoDaddy acknowledged that on March 30 the company was alerted to a security incident involving a customer's domain name.

An investigation revealed a GoDaddy employee had fallen victim to a spear-phishing attack, and that five other customer accounts were "Potentially" affected - although GoDaddy wouldn't say which or how many domains those customer accounts may have with GoDaddy.

There are many things domain owners can and should do to minimize the chances that domain thieves can wrest control over a business-critical domain, but much of that matters little if and when someone at your domain name registrar gets phished or hacked.

Review the security of existing accounts with registrars and other providers, and make sure you have multiple notifications in place when and if a domain you own is about to expire.

News URL

https://krebsonsecurity.com/2020/03/phish-of-godaddy-employee-jeopardized-escrow-com-among-others/

#godaddy #phish