Web hosting giant GoDaddy disclosed on February 17, 2023 a multi-year security breach that enabled unknown threat actors to install malware on its servers and exfiltrate source code related to some of its services.
The threat actors have breached its cPanel shared hosting environment.
The malware installed on the systems of the company was intermittently redirecting random customer websites to malicious websites, stated the company.
The security breach was discovered in December 2022 after customers reported that this, however the attackers had access to GoDaddy’s network for several years.
The company says that previous breaches disclosed in November 2021 and March 2020 are also linked to this multi-year campaign.
Read more about it here.