Security researcher KrebsOnSecurity has reported the vulnerability of several cryptographic platforms based on the popular web host GoDaddy.
According to the information provided by the researcher, the attacks began by November 13 on the cryptocurrency trading platform liquid.com.
Faced with such action, Liquid’s representative, Mike Kayamori, assured that GoDaddy incorrectly carried out a transfer of account and domain control to the attacker, which allowed him to change DNS records and thus take control of several email accounts.
NiceHash, the crypto mining service, was another victim who discovered that it had been compromised on November 18 after it discovered an unauthorized modification in some of the settings of its log files in GoDaddy, briefly redirecting the email and the site’s web traffic.
Social engineering has become one of the most popular practices used by cybercriminals to trick website administrators by posing as users, in order to obtain cryptocurrencies. For this reason, companies like NiceHash advise their clients to change passwords and activate authentication on their accounts.