Godaddy hacked. 28000 hosting accounts affected. Don’t panic. Take corrective action by resetting or changing passwords for hosting of web, email and Office365. Do not use the same password for everything.
There are a few key things you can check to see if you are the target of a phishing attack:
- Check the email header. If the source of the email does not come from a registered GoDaddy domain, then it most likely did not come from GoDaddy and is an attempt at phishing.
- Look for a large amount of typos or misspellings in the email content itself. This can indicate the presence of an attacker. Professional emails will contain minimal typos or misspellings, if any.
- Modified verbiage used to scare you into providing personal information. GoDaddy’s security incident disclosure email should not appear to scare you, or ask you to provide any information. It should simply inform you that you may have been impacted by a breach. If you receive an email that appears to be scaring you into providing information, then it may be a phishing attempt.
For further support contact Support911 executives. Learn more
Google Project Zero has found a credential leaking vulnerability in the LastPass password manager. Google Project Zero is a team of highly talented security analysts with a brief to uncover zero-day vulnerabilities. If a vulnerability is found, Project Zero reports to the vendor concerned and starts a 90-day countdown for a fix to be issued before full public disclosure is made. LastPass is also in the security business, being one of the most popular password management solutions with more than 16 million users, including 58,000 businesses. Project Zero has just disclosed that a security vulnerability left some of those 16 million users exposed to the risk of credential compromise as, in an ironic twist, LastPass could leak the last password used to any website visited.
More on this: Google Warns LastPass Users Were Exposed To ‘Last Password’ Credential Leak
Flipboard Database Hacked — 100 Million Users’ Account Information Exposed – The hackers potentially downloaded data(base) containing Flipboard users’ real name, usernames, cryptographically (salted hash) protected passwords and email addresses, including digital tokens for users who linked their Flipboard account to a third-party social media service.
Source: The Hacker News