Whenever I receive an email stating that one of my accounts was hacked and to ‘click here’ to reset the password, my first thought is that it’s a phishing scam. In this case, however, Godaddy appears to have been hacked.
Godaddy Notifies Customers of Security Breach
According to the email they sent out:
Is the Email Sender Legit?
Whenever you receive an email like this, be sure to check the actual from address – if it’s a scam, it will have a scammy-looking email address. Note, in some email clients an alias shows up in the ‘from’ field – hover over the alias to see the actual email address.
Avoid Clicking Links in Emails, Go to the Source
Once you confirm that it is a valid email, you’ll want to take any actions listed in the emails. Even if it appears legit, I would NOT click on any links in the email itself. Go to the business’s website, log in to your account and take the necessary steps from there. If you don’t know what to do after logging in, use the chat/support link within your account to ask for help.
Reset Your Passwords
Godaddy goes on to say…
Resetting your passwords is straightforward enough. Godaddy has a number of step-by-step guides to assist you if you aren’t sure how. Then be especially aware of phishing and spam emails landing in your inbox. Scrutinize every email and always avoid clicking links in emails when possible. If you’re unsure of an email being legit, copy the subject line into a new google search, or on snopes.com and see if that email has already been identified as a scam.
Learn more about the Godaddy Hack
If you’d like to look into Godaddy’s security incident further, check out these resources:
- Domain Registrar GoDaddy Breached, Attackers Trick Employees Into Transferring Ownership of Cryptocurrency Sites | CPO Magainze
- GoDaddy just realized it was hacked months ago | Mashable
- GoDaddy Hacked, 1.2M Customers at Risk of Phishing Attack | PC Magazine
Need Help Securing Your Godaddy Managed WordPress Hosting Account?
Contact Contento Interactive Group and we’ll help you reset the passwords including your database credentials.