Dynadot

GoDaddy sites hacked

Catch.Club Catch.Club
Impact
16
blog.sucuri.net/2010/05/second-round-of-godaddy-sites-hacked.html -Sucuri Security: Second round of GoDaddy sites hacked
 
Last edited by a moderator:
0
•••
The views expressed on this page by users and staff are their own, not those of NamePros.
0
•••
No surprise. WordPress is a favorite target of hackers.
 
0
•••
0
•••
Not just WP from what I read. There were reports of other types pages hacked as well - some running things like Joomla, some not. Either they a launched a barrage of exploits targeting GD's IP range or they found a vulnerability in their hosting environment.
 
0
•••
Not just WP from what I read. There were reports of other types pages hacked as well - some running things like Joomla, some not. Either they a launched a barrage of exploits targeting GD's IP range or they found a vulnerability in their hosting environment.

One comment on their site:"Their hosted sites were php, asp and coldfusion sites" .... it must be the GD hosting environment since these are 3 different languages with different coding methods AFAIK, unless there is one huge exploit what could affect three different languages?...i am not a coder but that seems strange to me

Cheers

Liquid
 
0
•••
Some person/group COULD have scripted and launched a collection of different exploits against their entire IP range. But shared hosting is by definition not very secure so someone might have found a vulnerability and attacked from inside their network.
 
0
•••
Maybe they targeted GoDaddy IP ranges based on the theory that many GD customers aren't going to be professionals.

Generally, GD's explanations for big hacking events are spot-on. I have a ton of GD sites using WP on my own virtual dedicated servers. No sign of any issues.
 
0
•••
It is Godaddy hosting that is being exploited.

I have non wordpress sites on GD and they have been compromised.

Now first of all Godaddy has to accept it is their hosting that is messed up. Rather then dump it on wordpress or something else.
 
0
•••
Can you link to a site that was compromised?

I assume it's a shared hosting issue, right?
 
0
•••
I have non wordpress sites on GD and they have been compromised.

Sorry to hear that!

Wordpress and Joomla ARE common vectors for attacks - one host that I use recently instituted a policy of "upgrade to the current version or have your installation disabled" for their shared hosting customers. Draconian, but I guess it works.
 
0
•••
Ah, nowadays I read more and more abput those things :/
 
0
•••
It's not a WP issue blog.sucuri.net/2010/05/found-code-used-to-inject-malware-at.html - Sucuri Security: Found code used to inject the malware at GoDaddy

GD fess up blog.sucuri.net/2010/05/reply-from-godaddy-regarding-latest.html - Sucuri Security: Reply from GoDaddy regarding the latest attacks
 
Last edited by a moderator:
0
•••
Back