One of the world’s largest domain registers and hosts was breached in a multi-year attack that compromised customer accounts and their websites, as reported to the SEC. GoDaddy said in a filing on Thursday that three sophisticated attacks were carried out by the same perpetrators.
The attackers “installed malware on our systems and obtained pieces of code related to some services within GoDaddy,” the company said, as well as gained access to employee credentials. The malware would randomly redirect customer websites to malicious ones.