GoDaddy, one of the largest domain registrars and hosting providers, has been hacked. On November 17, traces of unauthorized access to the servers responsible for providing hosting based on the WordPress platform (ready-made WordPress environments accompanied by the provider) were revealed. Analysis of the incident showed that outsiders gained access to the WordPress hosting management system through a compromised password of one of the employees, and used an unpatched vulnerability in an outdated system to gain access to confidential information about 1.2 million active and inactive users of WordPress hosting.
Data about the names of accounts and passwords used by clients in the DBMS and SFTP fell into the hands of the attackers; the administrator passwords for each WordPress instance, set during the initial creation of the hosting environment; private SSL keys of a part of active users; email addresses and customer numbers that could be used for phishing. It is noted that the attackers had access to the infrastructure since September 6.
Source: opennet.ru