The company says an attacker used a compromised password to access its provisioning system, giving them access to email addresses, some passwords, and even a number of customers’ private SSL keys.
GoDaddy filed an incident report with the SEC on Monday, stating it found an unauthorized third party had accessed its system and collected account information of up to 1.2 million of its customers.
Web hosting company GoDaddy Inc said on Monday email addresses of up to 1.2 million active and inactive Managed WordPress customers had been exposed in an unauthorized third-party access.