• GoDaddy Community
  • Managing Domains

    • Managing Domains

    cancel
    Turn on suggestions
    Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
    Showing results for 
    Show  only  | Search instead for 
    Did you mean: 
    Go to solution
    Laisseraller
    New
    ‎01-22-2019 08:00 PM
    ‎01-22-2019 08:00 PM

    News about DNS weakness at GoDaddy.com

    22Jan 19
    Bomb Threat, Sextortion Spammers Abused Weakness at GoDaddy.com

     

    The Above I just learned about should we be worried?

    0 Kudos
    Reply
    1 ACCEPTED SOLUTION
    Laisseraller
    New
    ‎01-30-2019 07:34 AM
    ‎01-30-2019 07:34 AM

    My efforts in this post was just to alert others!  Thanks for everyone that participated!   This will need to be an ongoing effort to keep on top of it.   I personally experienced my own domain name for another company stolen then the crooks attempted to sell it back to me for big dollars, I was able to change the name slightly keeping my website working and their effort ended.  This was a Canadian Company not Godaddy.  My website is now on a USA hosting site not Godaddy.  You learn by experience. 

    View solution in original post

    0 Kudos
    Reply
    5 REPLIES 5
    krafttechgroup
    Getting Started
    ‎01-23-2019 06:14 AM
    ‎01-23-2019 06:14 AM

    What is GoDaddy doing to fix this weakness???

     

    Brian Krebs article: https://krebsonsecurity.com/2019/01/bomb-threat-sextortion-spammers-abused-weakness-at-godaddy-com/

    0 Kudos
    Reply
    JesseW
    Community Manager
    Community Manager
    ‎01-23-2019 06:19 AM
    ‎01-23-2019 06:19 AM

    Hi @Laisseraller @krafttechgroup. Thanks for reaching out. As the article you're referring to mentions, "We’ve identified a fix and are taking corrective action immediately... While those responsible were able to create DNS entries on dormant domains, at no time did account ownership change nor was customer information exposed". 

     

    JesseW - GoDaddy | Community Manager | 24/7 support available at x.co/247support | Remember to choose a solution and give kudos.
    Reply
    krafttechgroup
    Getting Started
    In response to JesseW
    ‎01-23-2019 07:01 AM
    ‎01-23-2019 07:01 AM

    Yes I saw that response already.  Domain transfer isn't the issue so I'm not sure why that is part of the response from GoDaddy.  The issue is with the ability to modify a domain's DNS records by people that don't own the domain...through a weakness in GoDaddy's architecture.  When will the "fix" be applied?

    0 Kudos
    Reply
    JesseW
    Community Manager
    Community Manager
    In response to krafttechgroup
    ‎01-23-2019 08:32 AM
    ‎01-23-2019 08:32 AM

    @krafttechgroup. My apologies if I'm missing something, but I don't see where GoDaddy mentions domain transfers in the response. Unfortunately, I don't have additional information currently. If I do find more I can share, I'll do it here. 

     

    JesseW - GoDaddy | Community Manager | 24/7 support available at x.co/247support | Remember to choose a solution and give kudos.
    0 Kudos
    Reply
    Laisseraller
    New
    ‎01-30-2019 07:34 AM
    ‎01-30-2019 07:34 AM

    My efforts in this post was just to alert others!  Thanks for everyone that participated!   This will need to be an ongoing effort to keep on top of it.   I personally experienced my own domain name for another company stolen then the crooks attempted to sell it back to me for big dollars, I was able to change the name slightly keeping my website working and their effort ended.  This was a Canadian Company not Godaddy.  My website is now on a USA hosting site not Godaddy.  You learn by experience. 

    View solution in original post

    0 Kudos
    Reply

    You may also like...