Security News > 2020 > May > GoDaddy hack: Miscreant goes AWOL with 28,000 users' SSH login creds after vandalizing server-side file
Hosting biz GoDaddy has admitted a hacker tampered with an SSH file on its servers, leading to the theft of 28,000 users' SSH credentials.
The intrusion, which took place last month, involved one or more malicious persons "Alter" an SSH file on GoDaddy's infrastructure, the US giant told The Register.
GoDaddy spokesman Nick Fuller sent us a statement: "On April 23, 2020, we identified SSH usernames and passwords had been compromised through an altered SSH file in our hosting environment. This affected approximately 28,000 customers."
He continued: "We immediately reset these usernames and passwords, removed the offending SSH file from our platform, and have no indication the threat actor used our customers' credentials or modified any customer hosting accounts."
A good thing for customers to do now would be to change the login credentials for their GoDaddy SSH accounts.