Web hosting company GoDaddy Inc said on Monday email addresses of up to 1.2 million active and inactive Managed WordPress customers had been exposed in an unauthorised third-party access.
(Sign up to our Technology newsletter, Today's Cache, for insights on emerging themes at the intersection of technology, business and policy. Click here to subscribe for free.)
The company said the incident was discovered on Sept. 6 and the third-party accessed the system using a compromised password. "We identified suspicious activity in our Managed WordPress hosting environment and immediately began an investigation with the help of an IT forensics firm and contacted law enforcement," Chief Information Security Officer Demetrius Comes said in a filing.
Also Read | Cybersecurity will remain a top priority for firms this year
The company, whose shares fell about 1.6% in early trading, said it had immediately blocked the unauthorised third party, and an investigation was still going on.