image
The GoDaddy breach affecting 1.2 million customers has widened – it turns out that various subsidiaries that resell GoDaddy Managed WordPress were also affected. The additional affected companies are 123Reg, Domain Factory, Heart Internet, Host Europe, Media Temple and tsoHost. The world’s largest domain registrar confirmed to researchers at Wordfence that several of these brands’ customers were affected by the security incident (and Wordfence provided breach-notification notices from two of them in a Tuesday posting). “The GoDaddy brands that resell GoDaddy Managed WordPress are 123Reg, Domain Factory, Heart Internet, Host Europe, Media Temple and tsoHost,” Dan Rice, vice president of corporate communications at GoDaddy, told Wordfence. “A small number of active and inactive Managed WordPress users at those brands were impacted by the security incident. No other brands are impacted. Those brands have already contacted their respective customers with specific detail and recommended action.” It’s unclear exactly how many additional users were affected by the widened breach. GoDaddy’s Managed WordPress hosting environment is a site-building service that allows companies and individuals to use the popular WordPress content management system (CMS) in a hosted environment without having to manage and update it themselves. On Monday, the web-hosting giant said in a public filing to the SEC that an “unauthorized third party” managed to infiltrate its Managed WordPress systems…

Source