Earlier this week, the web hosting company GoDaddy announced that an unauthorized third party accessed the current and former customers’ email addresses, account numbers, and usernames. The third party is also alleged to have accessed the SSL private key of some active customers. The SSL private key allows website visitors to browse securely.
Upon learning of the GoDaddy data breach, the company contacted law enforcement and engaged the assistance of an IT forensics firm. In response, GoDaddy has reset all compromised passwords and is in the process of issuing and installing new certificates for affected customers. However, according to the company’s announcement, issued through the Securities and Exchange Commission (SEC), the GoDaddy data breach may have exposed more than 1.2 million email addresses of active and past customers, exposing them to phishing attacks.
Should I Contact an Attorney About a GoDaddy Class Action Lawsuit?
Our data privacy lawyers are investigating whether a class action claim against GoDaddy is warranted. Our data privacy lawyers are speaking to many GoDaddy customers who are contacting us about the data breach, and we are advising them of their legal rights.
What Are the Risks of the GoDaddy Data Breach?
Anytime an unauthorized user affirmatively seeks and obtains customers’ private information, there are a number of risks affected consumers face. In the case of the GoDaddy hack, there are several possible harms that the company’s current and former customers may experience:
The GoDaddy data breach apparently exposed 1.2 million customer email addresses as well as their GoDaddy account number. Any party in possession of this information may send seemingly legitimate emails to customers seeking additional personal information.
Phishing is primarily used to gather personal and financial information, which is then used to assume the identity of the victim. Often, unauthorized parties seek credit card information, which they then use to take cash advances or make purchases. However, the information obtained through the GoDaddy data breach may result in the issuance of unauthorized credit cards or other personal loans.
Unauthorized Access and Control of Customer’s Websites
The GoDaddy hack resulted in an unauthorized party obtaining highly sensitive information pertaining to active customers’ accounts. This exposes affected customers to the risk of another party accessing their website and potentially impersonating the company’s website.
What Should I Do if My Information Was Leaked Through the GoDaddy Data Breach?
There is no indication that GoDaddy has notified those current and former customers whose information was compromised. However, it is important that anyone who has or had a customer relationship with the company take steps to protect themselves. Some of the most important steps to take after the GoDaddy hack include:
- Find out what information was breached;
- Review all GoDaddy accounts for any suspicious activity;
- Change all passwords for GoDaddy accounts to minimize the risk of unauthorized access;
- Closely monitor any credit cards or bank accounts tied to a GoDaddy Account;
- Close any financial accounts that may have been compromised;
- Do not provide any personal or otherwise sensitive information in response to an email purportedly sent by GoDaddy; and
- Contact a GoDaddy data breach lawyer.
In the wake of a hack or data breach, companies need to disclose the risks to all affected customers. However, these companies also have an interest in minimizing the risks involved. The reality is that the GoDaddy data breach could result in more than a headache, and anyone whose customer information or email address was compromised should immediately reach out to a GoDaddy data breach lawyer for assistance.
Will There Be a GoDaddy Data Breach Lawsuit?
While it is too early to tell if the will be a GoDaddy class action, it remains a possibility based on the company’s own admissions.