Econowire

GoDaddy sites hacked

Discussion in 'Domain Industry News' started by drgrey, May 1, 2010.

Replies:
12
Views:
2,789

  1. drgrey

    drgrey Established Member

    Joined:
    Mar 12, 2009
    Posts:
    114
    Likes Received:
    16
    blog.sucuri.net/2010/05/second-round-of-godaddy-sites-hacked.html -Sucuri Security: Second round of GoDaddy sites hacked
     
    Last edited by a moderator: Nov 7, 2010
    The views expressed on this page by users and staff are their own, not those of NamePros.
  2. bazz

    bazz Established Member

    Joined:
    Jul 22, 2009
    Posts:
    193
    Likes Received:
    30
    wow looks bad :(
     
  3. DubDubDubDot

    DubDubDubDot Active Member VIP

    Joined:
    May 13, 2008
    Posts:
    1,740
    Likes Received:
    170
    No surprise. WordPress is a favorite target of hackers.
     
  4. DomainOutlaw

    DomainOutlaw Established Member

    Joined:
    Mar 23, 2010
    Posts:
    258
    Likes Received:
    5
    damn that sucks...
     
  5. enlytend

    enlytend Moderator, NamePros Moderator Business Account VIP Trusted Blogger ★★★★★★★★★★

    Joined:
    Aug 30, 2006
    Posts:
    5,884
    Likes Received:
    10,925
    Not just WP from what I read. There were reports of other types pages hacked as well - some running things like Joomla, some not. Either they a launched a barrage of exploits targeting GD's IP range or they found a vulnerability in their hosting environment.
     
  6. liquidcherry

    liquidcherry Active Member VIP

    Joined:
    Jul 27, 2006
    Posts:
    2,837
    Likes Received:
    343
    One comment on their site:"Their hosted sites were php, asp and coldfusion sites" .... it must be the GD hosting environment since these are 3 different languages with different coding methods AFAIK, unless there is one huge exploit what could affect three different languages?...i am not a coder but that seems strange to me

    Cheers

    Liquid
     
  7. enlytend

    enlytend Moderator, NamePros Moderator Business Account VIP Trusted Blogger ★★★★★★★★★★

    Joined:
    Aug 30, 2006
    Posts:
    5,884
    Likes Received:
    10,925
    Some person/group COULD have scripted and launched a collection of different exploits against their entire IP range. But shared hosting is by definition not very secure so someone might have found a vulnerability and attacked from inside their network.
     
  8. mrjohn

    mrjohn Established Member

    Joined:
    Jan 11, 2010
    Posts:
    377
    Likes Received:
    28
    Maybe they targeted GoDaddy IP ranges based on the theory that many GD customers aren't going to be professionals.

    Generally, GD's explanations for big hacking events are spot-on. I have a ton of GD sites using WP on my own virtual dedicated servers. No sign of any issues.
     
  9. Keral_Patel

    Keral_Patel I'll do it ★★★★★★★★★★

    Joined:
    Dec 8, 2005
    Posts:
    9,906
    Likes Received:
    1,169
    It is Godaddy hosting that is being exploited.

    I have non wordpress sites on GD and they have been compromised.

    Now first of all Godaddy has to accept it is their hosting that is messed up. Rather then dump it on wordpress or something else.
     
  10. mrjohn

    mrjohn Established Member

    Joined:
    Jan 11, 2010
    Posts:
    377
    Likes Received:
    28
    Can you link to a site that was compromised?

    I assume it's a shared hosting issue, right?
     
  11. enlytend

    enlytend Moderator, NamePros Moderator Business Account VIP Trusted Blogger ★★★★★★★★★★

    Joined:
    Aug 30, 2006
    Posts:
    5,884
    Likes Received:
    10,925
    Sorry to hear that!

    Wordpress and Joomla ARE common vectors for attacks - one host that I use recently instituted a policy of "upgrade to the current version or have your installation disabled" for their shared hosting customers. Draconian, but I guess it works.
     
  12. Ettore

    Ettore Established Member

    Joined:
    Apr 20, 2010
    Posts:
    129
    Likes Received:
    3
    Ah, nowadays I read more and more abput those things :/
     
  13. drgrey

    drgrey Established Member

    Joined:
    Mar 12, 2009
    Posts:
    114
    Likes Received:
    16
    It's not a WP issue blog.sucuri.net/2010/05/found-code-used-to-inject-malware-at.html - Sucuri Security: Found code used to inject the malware at GoDaddy

    GD fess up blog.sucuri.net/2010/05/reply-from-godaddy-regarding-latest.html - Sucuri Security: Reply from GoDaddy regarding the latest attacks
     
    Last edited by a moderator: Nov 7, 2010

Want to reply or ask your own question?

It only takes a minute to sign up – and it's free!

Share This Page

Loading...