Hackers tricked GoDaddy employees to help with attacks on crypto services

KrebsOnSecurity states that hackers tricked GoDaddy employees into handing over ownership of multiple cryptocurrency services’ web domains.

By · Nov 23, 2020 . 5min read

GoDaddy employees help hackers to attack crypto services news

The security research platform, KrebsOnSecurity, states that the hackers have tricked GoDaddy’s employees into possessing the control of domains. Hackers have attacked various cryptocurrency platforms hosted by GoDaddy over the past week. The attackers redirected email and web traffic. In accordance with the report, the hackers fooled GoDaddy employees to quickly assign the control and ownership of domains linked to cryptocurrency platforms. GoDaddy confirmed that a small number of customer domain names resulted in modification after a limited number of GoDaddy employees settled for what is being called a social engineering scam. 

NiceHash and Liquid encounter cybersecurity issues

Famous cryptocurrency services like NiceHash and Liquid have confirmed encountering cybersecurity issues. According to the website, the cyberattacks seem to have started on or about November 13 with Liquid being the first target. NiceHash described a hack on November 18.

The company declared on November 18 that GoDaddy gave unlawful access to its domain setting. Thus, leading to the modification of the DNS record of its domain nicehash.com. The mining service quickly stopped all the wallet activity for 24 hours. It declared to resume withdrawals after the conclusion of the internal audit. Bibox.com, Celsius.network, and Wirex.app have also reportedly suffered attacks.

However, the news occurs approximately a year following a data breach concerning GoDaddy’s 28,000 hosting accounts. However, it has been challenging for the company to avoid vishing. GoDaddy has joined various other companies in the norm of providing staff work remotely owing to the COVID-19 pandemic. Thus, making it difficult to verify the legitimacy of a caller or website. Thus, this might be a difficulty for various companies once it’s safe to return to offices.

Conclusively, cybercriminals have enhanced their attacks on individuals and firms across the globe. They are explicitly targeting employees operating from home. Interestingly enough, these email scams are increasingly more difficult for end-users to discover and take appropriate action.

Follow Cryptodose for more updates.

Share
       
         All News