Crooks social-engineer GoDaddy staff into handing over control of crypto-biz domain names

Crooks social-engineer GoDaddy staff into handing over control of crypto-biz domain names

Miscreants were able to hijack traffic and email destined for various cryptocurrency-related websites this month – by hoodwinking GoDaddy employees.


Using social engineering tricks, the hackers were able to change the DNS settings of their victims' domain names, redirecting connections and mail to their own servers. GoDaddy, the world's biggest domain-name registrar, confirmed "a small number of customer domains and/or account information" were altered after "a limited number of GoDaddy employees" were duped.


Those customers included cryptocurrency-trading site Liquid, which last week said: "On the 13th of November 2020, a domain hosting provider, GoDaddy, that manages one of our core domain names incorrectly transferred control of the account and domain to a malicious actor.


"This gave the actor the ability to change DNS records and in turn, take control of a nu ..

Support the originator by clicking the read the rest link below.