Support Services:service@dn.com
2025 Dn.com All Rights Reserved
GoDaddy was ordered to strengthen security measures
Industry Information
28 Jan 2025 01:33:34 PM
Abstract:
Recently, web hosting giant GoDaddy was ordered by the US Federal Trade Commission (FTC) to rectify security vulnerabilities and strengthen security measures.
Recently, web hosting giant GoDaddy was ordered by the US Federal Trade Commission (FTC) to rectify security vulnerabilities and strengthen security measures.
The FTC pointed out that since 2018, GoDaddy has failed to implement reasonable and appropriate security measures to protect and monitor its website hosting environment. The company has many problems, such as not properly managing assets and software updates, not assessing the risks of shared hosting services, not adequately recording and monitoring security-related events, and not isolating shared hosting from unsafe environments.
Its loose patch system is implemented by each product team independently and lacks centralized management, resulting in serious vulnerabilities in a large number of boxes in the shared hosting environment, allowing hackers to steal user credentials and credit card information within months.
In addition, its customized Internet-facing API has security risks, is open to the Internet and unprotected, uses plaintext credentials and has no multi-factor authentication, which also gives hackers an opportunity to take advantage. Between 2019 and 2022, these security flaws caused multiple security vulnerabilities, and hackers gained unauthorized access to customer websites and data.
Although GoDaddy claims on its website, social media and emails that it has deployed reasonable security measures and complies with the relevant Privacy Shield framework, the FTC believes this is misleading.
However, in the settlement agreement, GoDaddy neither admitted nor denied wrongdoing, and no fines were attached. But it agreed to establish a comprehensive information security program, including creating a centralized inventory and management system for hardware, software and firmware, using automated tools to analyze events in real time and retain system audit logs, and launching multi-factor authentication methods for employees. It is also necessary to hire an independent third party to review its security plan every two years and no longer make false statements about security measures.
The FTC emphasized that many companies rely on web hosts like GoDaddy to ensure the security of their websites, and this action is intended to encourage them to strengthen their security systems and protect consumers around the world. GoDaddy said it has implemented some of the requirements and plans to continue investing in defensive measures to ensure the security of customers, websites and data.
Information source: domainincite
Latest NewsRead more>
03 Mar 2025 03:08:54 PMIndustry Information
RoomKey.com domain name sold for $10,000. How did it go from glory to desolation?
Recently, the domain name RoomKey.com, which once carried the dream of hotel search business, was auctioned at a low price of $10,500. This news has attracted some attention in the domain name and hotel industry.
03 Mar 2025 02:19:34 PMIndustry Information
Sky-high domain name AI.COM is listed at a price of $100 million! It may create a milestone in the history of domain name transactions
The top-level domain name "AI.COM" in the field of artificial intelligence is officially listed for sale at a sky-high price of US$100 million.
28 Feb 2025 11:44:55 AMIndustry Information
Data shows that the sales volume of high-priced domain names is nearly twice that of low-priced ones
=Darpan Munjal shared a set of sales data on the social platform X that sparked heated discussions: the sales volume of domain names priced at $25,000 and above was almost twice that of domain names priced at $2,500.
28 Feb 2025 10:48:42 AMIndustry Information
Trump's decision may affect the future of .IO domain names
President Donald Trump’s recent decision will affect the future of the British Indian Ocean Territory, and this change has a direct impact on the .io country code domain name.
TheBrexitParty.org sold for $30,500
Recently, TheBrexitParty.org domain name was successfully sold for US$30,500. The transaction contains historical and political significance closely linked to the UK's Brexit movement.
Industry Information 27 Feb 2025 11:15:20 AM
Dubai Domain Day announces 2025 event schedule
Organisers of the Dubai Domain Day event have officially announced the schedule for the 2025 Domain Conference, which will be held in Dubai from October 22 to 23.
Industry Information 27 Feb 2025 10:11:19 AM
YY.vc domain name sold for $9,888
Recently, James Booth announced on the social platform X that he successfully sold the domain name YY.vc for $9,888.
Industry Information 26 Feb 2025 03:08:15 PM
Vetronix.com domain name dispute, UDRP ruling loses the case
Recently, the ownership of the Vetronix.com domain name has attracted attention. The French registrant of the domain name, Erik Bobbink, bought the domain name at a DropCatch auction seven years ago for $361.
Industry Information 26 Feb 2025 11:25:49 AM
.ai domain name transactions are hot, H1.ai domain name is sold for as high as $100,000
Recently, the domain name trading market has once again stirred up waves, especially the .ai domain name, among which H1.ai was sold for as high as $100,000, and MetaMedia.ai was sold for $18,500.
Industry Information 26 Feb 2025 04:46:48 PM
Alibaba announced an investment of 380 billion yuan and quickly acquired domain names such as Qwen.ai!
Alibaba has acquired the domain name of Qwen.ai. In addition, Wu Yongming, CEO of Alibaba Group, announced that Alibaba will invest more than 380 billion yuan in building cloud and AI hardware infrastructure in the next three years.
Industry Information 26 Feb 2025 04:43:38 PM