{"id":32194,"date":"2020-11-23T11:17:12","date_gmt":"2020-11-23T09:17:12","guid":{"rendered":"https:\/\/forklog.com\/en\/?p=32194"},"modified":"2025-08-28T07:28:44","modified_gmt":"2025-08-28T04:28:44","slug":"hackers-target-cryptocurrency-platforms-hosted-on-godaddy","status":"publish","type":"post","link":"https:\/\/forklog.com\/en\/hackers-target-cryptocurrency-platforms-hosted-on-godaddy\/","title":{"rendered":"Hackers target cryptocurrency platforms hosted on GoDaddy"},"content":{"rendered":"<p>Unknown hackers duped employees of the GoDaddy hosting provider and gained control of the domains of several cryptocurrency platforms. The attacks began on November 13, according to <a href=\\\"https:\/\/krebsonsecurity.com\/2020\/11\/godaddy-employees-used-in-attacks-on-multiple-cryptocurrency-services\/\\\" target=\\\"_blank\\\" rel=\\\"nofollow noopener noreferrer\\\">KrebsOnSecurity<\/a>.<\/p>\n<p><!--more--><\/p>\n<p>The first <a href=\"https:\/\/forklog.com\/en\/news\/liquid-a-bitcoin-exchange-reported-a-data-breach\">to be affected<\/a> was the cryptocurrency exchange Liquid. The hosting provider handed control of the account and the domain to the attacker. The attacker altered DNS records and took control of a number of internal email accounts.<\/p>\n<p>Liquid CEO Mike Kayamori noted that the hacker managed to penetrate the platform&#8217;s systems partially and gain access to the document storage. The exchange said that assets were not compromised.<\/p>\n<p>The second victim was the cloud-mining service NiceHash: on November 18, specialists detected unauthorized changes to the DNS settings at GoDaddy. As a result, emails and web traffic were redirected for a period of time.<\/p>\n<p>NiceHash froze withdrawals for 24 hours while it verified that the settings had been restored to their original state. The platform advised users to reset passwords and enable two-factor authentication.<\/p>\n<p>Presumably, the victims included cryptocurrency companies Bibox, Celsius and Wirex.<\/p>\n<p>A GoDaddy spokesperson acknowledged a problem with a &#8216;small number&#8217; of domains. According to him, a limited group of employees was targeted by social engineering fraud.<\/p>\n<p>Earlier, cybersecurity experts <a href=\"https:\/\/forklog.com\/en\/news\/cybersecurity-experts-report-a-rise-in-ransomware-attacks\">reported<\/a> that in Q3 2020 hackers began to conduct fewer mass ransomware campaigns and more often targeted large companies.<\/p>\n<p>As bitcoin&#8217;s price rose from July to September <a href=\"https:\/\/forklog.com\/en\/news\/rise-in-bitcoin-price-boosts-the-popularity-of-hidden-miners\">increased<\/a> the popularity of cryptojacking.<\/p>\n<p>Subscribe to ForkLog news on <a href=\\\"https:\/\/vk.com\/forklogcom\\\" target=\\\"_blank\\\" rel=\\\"nofollow noopener noreferrer\\\">VK<\/a>!<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Unknown hackers duped GoDaddy employees and gained control of the domains of several cryptocurrency platforms. The attacks began on November 13, according to KrebsOnSecurity.<\/p>\n","protected":false},"author":1,"featured_media":32195,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"select":"1","news_style_id":"","cryptorium_level":"","_short_excerpt_text":"","creation_source":"","_metatest_mainpost_news_update":false,"footnotes":""},"categories":[3],"tags":[1154,888,2026],"class_list":["post-32194","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news-and-analysis","tag-crimes","tag-liquid","tag-nicehash"],"aioseo_notices":[],"amp_enabled":true,"views":"12","promo_type":"1","layout_type":"","short_excerpt":"","is_update":"","_links":{"self":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts\/32194","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/comments?post=32194"}],"version-history":[{"count":1,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts\/32194\/revisions"}],"predecessor-version":[{"id":32196,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts\/32194\/revisions\/32196"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/media\/32195"}],"wp:attachment":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/media?parent=32194"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/categories?post=32194"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/tags?post=32194"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}