An undisclosed number of GoDaddy customers have had their information accessed in a data breach dating back to October 2019 which has been traced to one unnamed individual.
The breach saw the login information of customers of the US website domain registrar giant accessed, but GoDaddy says it has no evidence any files were added or modified on customer accounts.
In a letter to affected customers GoDaddy chief information security officer and vice-president of engineering, Demetrius Comes, says the individual responsible for the data breach has been blocked from its systems as the company continues to investigate the impact across its network.
GoDaddy is one of the world's largest domain registrars and is responsible for more than 19 million customers and 77 million domains.
The company says the breach is limited in scope to hosting accounts, meaning GoDaddy.com customer accounts and the personal information stored within those accounts were not accessed by the person responsible for the breach.
GoDaddy has proactively reset affected customers' hosting account login information to prevent any further unauthorised access.
Further, the company will be giving affected customers one year of its website security services at no cost. These services run scans on websites to identify and alert customers of any potential security vulnerabilities.
"We have already taken and will continue to take measures to enhance our security in light of this incident," says Comes in his letter to affected customers.
Business News Australia has reached out to GoDaddy for further clarification about the scope and nature of the October data breach.
Business News Australia