Moore Threads Stock Slides After Risk Warning Despite 600% Surge Since IPO 
Apple App Store Injunction Largely Upheld as Appeals Court Rules on Epic Games Case 
EU Court Cuts Intel Antitrust Fine to €237 Million Amid Long-Running AMD Dispute 
SUPERFORTUNE Launches AI-Powered Mobile App, Expanding Beyond Web3 Into $392 Billion Metaphysics Market 
China Adds Domestic AI Chips to Government Procurement List as U.S. Considers Easing Nvidia Export Curbs 
SpaceX Begins IPO Preparations as Wall Street Banks Line Up for Advisory Roles 
SoftBank Shares Slide as Oracle’s AI Spending Plans Fuel Market Jitters 
Australia’s Under-16 Social Media Ban Sparks Global Debate and Early Challenges 
iRobot Files for Chapter 11 Bankruptcy Amid Rising Competition and Tariff Pressures 
Microsoft Unveils Massive Global AI Investments, Prioritizing India’s Rapidly Growing Digital Market 
MetaX IPO Soars as China’s AI Chip Stocks Ignite Investor Frenzy 
EssilorLuxottica Bets on AI-Powered Smart Glasses as Competition Intensifies 
Apple Explores India for iPhone Chip Assembly as Manufacturing Push Accelerates 
Adobe Strengthens AI Strategy Ahead of Q4 Earnings, Says Stifel 
Biren Technology Targets Hong Kong IPO to Raise $300 Million Amid China’s AI Chip Push 
Trump Signs Executive Order to Establish National AI Regulation Standard 
Nvidia Weighs Expanding H200 AI Chip Production as China Demand Surges 
GoDaddy is one of the latest companies to suffer a security breach. The incident was revealed in a disclosure document filed to the Securities and Exchange Commission on Monday, confirming that up to 1.2 million customers were affected.
The attacker had reportedly used a compromised password to gain unauthorized access to GoDaddy’s provisioning system to get through to its legacy code base for its Managed WordPress hosting service.
Aside from providing its customers with domain names and offering web hosting, one of GoDaddy’s services is Managed WordPress hosting. It promises to provide users with search engine optimization (SEO) tools, malware scanning and removal, pre-built themes, and an array of WordPress plugins that customers can then use on their pages.
GoDaddy chief security information officer Demetrius Comes said the data breach was detected last Nov. 17 and that they have immediately blocked the attacker’s access. The company’s investigation, however, revealed that the unauthorized third-party access started as early as last Sept. 6.
Since the breach in September, GoDaddy found that the attacker was able to access up to 1.2 million active and inactive email addresses and customer numbers from Managed WordPress hosting users. The company warns affected customers that they could be subjected to phishing attacks due to the incident.
The breach also compromised the original WordPress Admin password used by the provisioner. But GoDaddy said passwords that were still in use at the time of the breach’s detection had been reset.
GoDaddy also confirmed that sFTP and database usernames and passwords of active customers were exposed. The company said those credentials have been reset as well at the time of disclosure.
A “subset of active customers” – but GoDaddy did not specify how many – also had their Secure Sockets Layer (SSL) private keys compromised in the breach. SSL is a commonly used internet security protocol. With SSL, data traveling from one website to another is encrypted, so anyone without the right SSL private key should be unable to access it. At the time GoDaddy announced the breach, the company said it had started providing new certificates for affected users.
Photo by Markus Spiske on Unsplash
