![]() ![]() ![]() The original WordPress Admin password that was set at the time of provisioning was exposed.The exposure of email addresses presents risk of phishing attacks. Up to 1.2 million active and inactive Managed WordPress customers had their email address and customer number exposed.Our investigation is ongoing, but we have determined that, beginning on September 6, 2021, the unauthorized third party used the vulnerability to gain access to the following customer information: Upon identifying this incident, we immediately blocked the unauthorized third party from our system. Using a compromised password, an unauthorized third party accessed the provisioning system in our legacy code base for Managed WordPress. We identified suspicious activity in our Managed WordPress hosting environment and immediately began an investigation with the help of an IT forensics firm and contacted law enforcement. Here is the background on what happened and the steps we took, and are taking, in response: On November 17, 2021, we discovered unauthorized third-party access to our Managed WordPress hosting environment. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |