https://www.wordfence.com/blog/2021/11/godaddy-breach-plaintext-passwords/While the company took immediate action to mitigate the damage, the attacker had more than two months to establish persistence, so anyone currently using GoDaddy’s Managed WordPress product should assume compromise until they can confirm that is not the case.
It appears that GoDaddy was storing sFTP credentials either as plaintext, or in a format that could be reversed into plaintext.
【 在 yyxc819 的大作中提到: 】
: GoDaddy announced this morning that they have been breached
: 120万用户密码明文泄露,有你的吗?
: 发自「今日水木 on NoKia」
--
FROM 123.116.196.*