happen to them. Amazon were to blame again.
I’m @jb on both Twitter and Instagram. So you can imagine my username is a very heavy target. It used to be primarily because of the Jonas Brothers but of course now it’s all related to Justin Bieber. As you can imagine, with the marketing power behind his name, there’s thousands if not more companies/hackers/etc… who’d love to get their grubby hands on it for profit.
It started when I received a forgot password email from Amazon. Forgot password emails are regular for me, because of my @jb username, but this was the first I had ever received from Amazon. “Why in the world would someone want that?” Twitter released feature awhile back ago that turns off the forgot password feature unless you have some specific information about the person. This was a godsend. Unfortunately Instagram has yet to implement something similar.
I of course ignored the first email from Amazon like I normally do with any forgot password emails I get that I didn't initiate. Imagine my surprise when I received a second email about an hour later saying that my password had been successfully changed! I also had 3 fresh forgot password emails from Apple. It was clear I was being targeted.
Thats actually nice to hear, hopefully they have an explanation!
Here's GoDaddy's statement (via TechCrunch).
GoDaddy admits hacker’s social engineering led it to divulge info in @N Twitter account hack
Enabling two-factor authentication on your GoDaddy account seems to be a bit of a waste of time if the hacker can just call customer support and gain access to your domains.GoDaddy Chief Information Security Office Todd Redfoot issued TechCrunch the following statement about the hack:
Our review of the situation reveals that the hacker was already in possession of a large portion of the customer information needed to access the account at the time he contacted GoDaddy. The hacker then socially engineered an employee to provide the remaining information needed to access the customer account. The customer has since regained full access to his GoDaddy account, and we are working with industry partners to help restore services from other providers.
Enabling Two-Step Authentication « GoDaddy
Last edited by Arthur; 30th January 2014 at 05:53 AM.
There are currently 1 users browsing this thread. (0 members and 1 guests)