GoDaddy – Computer Security Articles

.US Harbors Prolific Malicious Link Shortening Service

October 31, 2023 admin A Little Sunshine, black pumas, blackpumaoct33@ukr.net, GoDaddy, infoblox, josef bakhovsky, kristaps ronka, leila puma, malicious link shortener, Namecheap, namesilo, national telecommunications and information administration, prolific puma, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Tue, 31 Oct 2023 13:26:55 +0000

The top-level domain for the United States — .US — is home to thousands of newly-registered domains tied to a malicious link shortening service that facilitates malware and phishing scams, new research suggests. The findings come close on the heels of a report that identified .US domains as among the most prevalent in phishing attacks over the past year.

Independent Krebs

Why is .US Being Used to Phish So Many of Us?

September 1, 2023 admin A Little Sunshine, coalition for online accountability, dean marks, GoDaddy, interisle consulting group, national telecommunications and information administration, The Coming Storm, u.s. department of commerce, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Fri, 01 Sep 2023 15:38:11 +0000

Domain names ending in “.US” — the top-level domain for the United States — are among the most prevalent in phishing scams, new research shows. This is noteworthy because .US is overseen by the U.S. government, which is frequently the target of phishing domains ending in .US. Also, .US domains are only supposed to be available to U.S. citizens and to those who can demonstrate that they have a physical presence in the United States.

MalwareBytes Security

GoDaddy says it’s a victim of multi-year cyberattack campaign

February 21, 2023 admin GoDaddy, godaddy breach, news

Categories: News

Tags: GoDaddy

Tags: GoDaddy breach

Hosting and domain name company GoDaddy says it believes a sophisticated threat actor group has been subjecting the company to a multi-year attack campaign.

Independent Krebs

Crooks Continue to Exploit GoDaddy Hole

February 4, 2019 admin A Little Sunshine, A.S. Mechanical, Charlene Price, Dan Race, DNS, Gand Crab ransomware, GoDaddy, Latest Warnings, Martijn Grooten, MyOnlineSecurity, nomoreransom.org, Ron Guilmette, Spammy Bear, The Coming Storm, Virus Bulletin

Credit to Author: BrianKrebs| Date: Mon, 04 Feb 2019 19:12:25 +0000

Godaddy.com, the world’s largest domain name registrar, recently addressed an authentication weakness that cybercriminals were using to blast out spam through legitimate, dormant domains. But several more recent malware spam campaigns suggest GoDaddy’s fix hasn’t gone far enough, and that scammers likely still have a sizable arsenal of hijacked GoDaddy domains at their disposal.

MalwareBytes Security

A week in security (January 21 – 27)

January 28, 2019 admin 2019 State of Malware report, 2fa, ALPR, Android malware, anpr, Ars Technica, Bleeping Computer, crytekk, crytekk ransomware, Dark Reading, fortnight, GDPR, GoDaddy, Help Net Security, KrebsOnSecurity, Mitsubishi, modlishka, phishing, recap, Security Week, Security world, Techcrunch, The Wall Street Journal, vishing, voicemail phishing, Vulnerability, Week in security, weekly blog roundup, Youtube

Credit to Author: Malwarebytes Labs| Date: Mon, 28 Jan 2019 18:00:14 +0000

A roundup of last week’s security news from January 21 to 27, including Modlishka, Crytekk, PUPs, and the State of Malware report.

Categories:

Tags: 2019 State of Malware report 2fa ALPR android malware anpr Ars Technica Bleeping Computer crytekk crytekk ransomware Dark Reading fortnight gdpr GoDaddy Help Net Security KrebsOnSecurity mitsubishi modlishka phishing recap Security Week TechCrunch The Wall Street Journal vishing voicemail phishing vulnerability week in security weekly blog roundup youtube

(Read more…)

The post A week in security (January 21 – 27) appeared first on Malwarebytes Labs.

Independent Krebs

Bomb Threat, Sextortion Spammers Abused Weakness at GoDaddy.com

January 22, 2019 admin A Little Sunshine, Amazon Web Services, Cisco Talos, Digital Ocean, DNS, GoDaddy, Google Cloud, Matthew Bryant, mozilla firefox, Mozilla Foundation, Ron Guilmette, Spammy Bear, The Coming Storm, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Wed, 23 Jan 2019 02:44:28 +0000

Two of the most disruptive and widely-received spam email campaigns over the past few months — including an ongoing sextortion email scam and a bomb threat hoax that shut down dozens of schools, businesses and government buildings late last year — were made possible thanks to an authentication weakness at GoDaddy.com, the world’s largest domain name registrar, KrebsOnSecurity has learned. Perhaps more worryingly, experts warn this same weakness that let spammers hijack domains registered through GoDaddy also affects a great many other major Internet service providers, and is actively being abused to launch phishing and malware attacks which leverage dormant Web site names currently owned and controlled by some of the world’s most trusted corporate names and brands.

MalwareBytes Security

Partnerstroka: Large tech support scam operation features latest browser locker

September 13, 2018 admin Blogger redirects, browlock, browlocks, browser locker, browser lockers, cybercrime, Decoy sites, GoDaddy, HTTP authentication, Indicators of compromise, IOC, IOCs, malicious pop-ups, malvertising, Malwarebytes Browser Extension, Malwarebytes Browser Extensions, Partnerstroka, rogue tech support ads, Social engineering, stroka, tech support, tech support scams, TSS

Credit to Author: Jérôme Segura| Date: Thu, 13 Sep 2018 15:00:00 +0000

Tech support scammers belonging to the Partnerstroka group are once again abusing browsers, this time with a new browlock feature to reel in more victims, in one of the biggest campaigns we’ve ever tracked.

Categories:

Tags: Blogger redirects browlock browlocks browser locker browser lockers Decoy sites GoDaddy HTTP authentication Indicators of compromise IOC IOCs malicious pop-ups malvertising Malwarebytes Browser Extension Malwarebytes Browser Extensions Partnerstroka rogue tech support ads stroka tech support tech support scams TSS

Independent Krebs

A Sobering Look at Fake Online Reviews

April 18, 2018 admin A Better Today Center, A Little Sunshine, Better Tomorrow Treatment Center, Bravo Recovery Center, Breadcrumbs, Bryan Seely, Church of Scientology, Detroit Hills Recovery, First Bloom Recovery, First Exit Recovery, Get Clean Rehab Treatment, Get Sober Addiction Center, GoDaddy, Gold Mine Recovery, Great Eagle Recovery, Green Circle Rehab Center, Green House Treatment, Harmony Place Addiction Center, Healing Way Addiction Treatment, Healing Way Recovery Center, Integra Addiction Center, John Harvey, Just Believe Detox, L. Ron Hubbard, Life Solutions Drug Treatment, Narconon, New Light Addiction Centers, New Today Programs, New Today Rehab Centers, New Way Addiction Centers, Next Step Treatment Center, Ohio Drug Recovery Center, Second Chance Addiction Center, seorehabs, Sober Path Recovery Centers, Solution Recovery Programs, Stay Clean Addiction Center, Summer Recovery, Tedi Spicer, TopSeek, TopSeek Inc, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Wed, 18 Apr 2018 16:08:36 +0000

In 2016, KrebsOnSecurity exposed a network of phony Web sites and fake online reviews that funneled those seeking help for drug and alcohol addiction toward rehab centers that were secretly affiliated with the Church of Scientology. Not long after the story ran, that network of bogus reviews disappeared from the Web. Over the past few months, however, the same prolific purveyor of these phantom sites and reviews appears to be back at it again, enlisting the help of Internet users and paying people $25-$35 for each fake listing.

← Previous