Technology

GoDaddy security breach exposes WordPress users' data

1 minute read

The company logo and ticker for GoDaddy Inc. is displayed on a screen on the floor of the New York Stock Exchange in New York, March 4, 2019. REUTERS/Brendan McDermid

Nov 22 (Reuters) - Web hosting company GoDaddy Inc (GDDY.N) said on Monday email addresses of up to 1.2 million active and inactive Managed WordPress customers had been exposed in an unauthorized third-party access.

The company said the incident was discovered on Nov. 17 and the third-party accessed the system using a compromised password.

"We identified suspicious activity in our Managed WordPress hosting environment and immediately began an investigation with the help of an IT forensics firm and contacted law enforcement," Chief Information Security Officer Demetrius Comes said in a filing.

The company, whose shares fell about 1.6% in early trading, said it had immediately blocked the unauthorized third party, and an investigation was still going on.

(This story corrects second paragraph to say the incident was discovered on Nov. 17, not Sept. 6)

Register now for FREE unlimited access to reuters.com
Reporting by Tiyashi Datta in Bengaluru; Editing by Vinay Dwivedi

Our Standards: The Thomson Reuters Trust Principles.

More from Reuters