Vishing scam targets GoDaddy employees
A security incident at GoDaddy, an Internet domain and hosting registrar, has compromised some cryptocurrency services such as Liquid and NiceHash.
The cyberattack, using vishing techniques against GoDaddy's employees, allowed unauthorised access that involved controlling GoDaddy's domain and account settings temporarily, which, in turn, allowed to make unauthorised changes, deny access to websites and access to sensitive customer data.
In Liquid's case, the information compromised could include: emails, names, addresses, encrypted passwords and personal documentation. In the case of NiceHash, no data violation was recorded.
At present, GoDaddy has already reported that all the problems have been resolved.
References:
- 18/11/2020 twitter.com Official notice
- 18/11/2020 twitter.com Update I
- 18/11/2020 twitter.com Update II
- 18/11/2020 twitter.com Update III
- 18/11/2020 blog.liquid.com Security Incident on Liquid
- 18/11/2020 nicehash.com NiceHash is back online! What happened?
- 21/11/2020 krebsonsecurity.com GoDaddy Employees Used in Attacks on Multiple Cryptocurrency Services
- 21/11/2020 gizmodo.com Attackers Dupe GoDaddy Staff Into Helping Them Take Down Cryptocurrency Services
- 23/11/2020 bankinfosecurity.com Fraudsters Target Cryptocurrency Platforms Through GoDaddy