back to article GoDaddy joins the dots and realizes it's been under attack for three years

Web hosting and domain name concern GoDaddy has disclosed a fresh attack on its infrastructure, and concluded that it is one of a series of linked incidents dating back to 2020. The business took the unusual step of detailing the attacks in its Form 10-K – the formal annual report listed entities are required to file in the US …

  1. Lil Endian Silver badge

    Bis Später Pater

    GoDaddy is unsure of the root cause of the incident...

    Oh, allow me: your negligence - monumental negligence in your duty of care to your customers and, by extension, the users of their services.

    Bad for any company, regarding IT security. For a tech company with a focus on inter-networking services that should be terminal.

    Bad Daddy, bad! You may Go now.

    1. Orv Silver badge

      Re: Bis Später Pater

      You're not wrong, but I'm also having trouble thinking of a hosting service and registrar that I'd describe as competent. Dotster bought out a company that had one of my domain names and screwed things up so badly that, five years later, I can still only manage it by filing tickets. Their web control panel can see it but insists I don't own it.

  2. Pascal Monett Silver badge

    Green hats, really ?

    What about blue hats ? Or grey hats ?

    Or hey, it's the latest fashion apparently, rainbow hats ?

    Can't be woke if you leave them out, can you ?

    This is getting ridiculous.

    1. Forum McForumface

      Re: Green hats, really ?

      I thought green hat referenced a military connection? It’s not unreasonable in that context - well, not to me at least.

      Edit: I think I’m wrong about this, and it refers to relative newbies. Oh well. There’s still some utility to the distinction.

      1. KarMann Silver badge

        Re: Green hats, really ?

        I was guessing it was those who were just in it for the ransom $$$/£££/€€€, but that was very much a guess.

    2. anonymous boring coward Silver badge

      Re: Green hats, really ?


  3. Arthur the cat Silver badge

    Doctor Seuss time


  4. IGotOut Silver badge


    As there is only one language Putin understands, we should make it legal for all European and NATO nation's to hack Russian and her puppet states as well.

    He only see's inaction as a weakness, so if we allow him to do this, then he and his cronies will just escalate it.

    1. Michael Strorm Silver badge

      Re: Well...

      This has been suggested before, the problem being that it legitimises, normalises and encourages hacking on both sides when that's something that's more in Putin's interests than the West's in this asymmetric scenario.

    2. Anonymous Coward
      Anonymous Coward

      Re: Well...

      Can anyone give a good reason why we shouldn't just block all Russian Internet traffic?

      1. Richard 12 Silver badge

        Re: Well...

        We want ordinary Russians to see what Putin is actually doing in their name.

        1. Anonymous Coward
          Anonymous Coward

          Re: Well...

          Ordinary Russians are quite happy with Putin as long as they have bread and vodka. Just like the muzhiks were quite happy with the Tsar. Don't forget that Russia is mainly villages and some major cities.

          1. teknopaul Silver badge

            Re: Well...

            Thing about the truth is it can take a while but it leaks. Lies require a constant watertight blanket. Putin made clever use of lies in the US but he's wrong if he thinks he will beat Wikipedia.

      2. Version 1.0 Silver badge

        Re: Well...

        Can anyone give a good reason why we shouldn't just block all Russian Internet traffic? FTFY so I gave you an upvote.

        1. Lil Endian Silver badge

          Re: Well...

          Y'aright! I can imagine all those dodgy geezers hanging around in seedy bars trying to score the latest BOFH episode! Get real man!

  5. Eponymous Bastard

    Purple helmet

    I'll get my coat.

    1. Lil Endian Silver badge

      Re: Purple helmet

      U+0055 U+0007 U+0004*

      (*I didn't wanna get into scancodes!)

  6. Anonymous Coward
    Anonymous Coward

    So they think it's a campaign three years later? Ha!

    So funny. My company had websites with them a couple of years ago and one of them got hacked repeatedly. When I investigated I found that someone logged in the admin console from an IP address in El Salvador - which was provided by a Microtik router that had known security issues. Admin credentials were used to login, and the first thing they did was delete or remove all the Sucuri security stuff then they rewrote the website to suit themselves. It was all in the logs plain to see but the Sucuri staff insisted there was a bad plugin or something something. I was able to get our hosting moved off GoDaddy after that.

  7. Kevin McMurtrie Silver badge


    If only there was some standardized means to inform a network that they have a large number of compromised hosts. Maybe something like a public record, like an AbuseIPDB. Maybe a standardized abuse e-mail contact, but one that doesn't auto-reply with "This email inbox isn't monitored." GoDaddy could have seen a pattern years ago.

    P.S. Somebody still needs to convince DigitalOcean that they've been hacked since November 2022.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Other stories you might like