I've reported this to Godaddy and they tried to tell me that a fake email I got without a Godaddy email header was legitimately sent from Godaddy....
They are aware but the problem is Godaddy has ignored this problem for years and doesn't feel they are setup to handle stuff like this, so they don't seem to deal with it as far as someone reaching out for support., and now it's of course advanced a bit from "certificate scams" to now there's initial contact through Godaddy before they try to scam you.... Twitter also seems to support whoever is doing the scams because they sure still are online and in "business"!
Godaddy for years let the privacy stuff just be open unless you paid them to keep it private (you paid the price for Privacy with Godaddy before, you just didn't get it).
I think the whole Godaddy rebranding and the whole privacy deal where people were finally switched private, could just be publicity stunts.
Why would a company help cover up private info, if they are just going to ignore future scam emails sent through their new system design?
When I first signed up for Godaddy to create my first websites, before 6 months had passed, Godaddy was stripping the "unlimited" yearly services I had paid for already, and I even had someone claim to be from the exec-office threatening to change stuff on my account without my permission.
That was before the rebranding of Godaddy, where they claimed to be more about customers and their ideas and helping them.... but again why would a company help cover up private info, if they just going to ignore future scam emails sent through their new system design?
Why would a company claim they fixed a problem, if they just ignore the further problems their "fix" created?