Have you heard that GoDaddy has admitted customer usernames and passwords for connecting remotely to Linux servers via SSH have been compromised, forcing providers to reset passwords on 28,000 accounts?
“We recently identified suspicious activity on a subset of our servers and immediately began an investigation,” the company said in letters sent to customers, a copy of which was filed with California’s attorney general. “The investigation found that an unauthorized individual had access to your login information used to connect to SSH on your hosting account. We have no evidence that any files were added or modified on your account. The unauthorized individual has been blocked from our systems, and we continue to investigate potential impact across our environment.”
GoDaddy told Forbes.com that it discovered the compromise on April 23rd, but there are news reports saying the breach occurred last October. If accurate, it took the company some six months to discover.