• GoDaddy Community
  • Managing Domains

    • Managing Domains

    cancel
    Turn on suggestions
    Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
    Showing results for 
    Show  only  | Search instead for 
    Did you mean: 
    SrTrekker
    New
    ‎01-24-2019 05:39 AM
    ‎01-24-2019 05:39 AM

    Emergency Directive 19-01 from Cyber.DHS.gov

    https://cyber.dhs.gov/assets/report/ed-19-01.pdf

    Directive issued 2 days ago to gov't agencies.  I presume the threat exists in private industry also.  My domains reside with GoDaddy.  Is this an action for GoDaddy?  If not, how do I check/validate/take an action to protect my DNS activity?

    Product:
    0 Kudos
    Reply
    3 REPLIES 3
    MrVapor
    Super User 2020
    Super User 2020
    ‎01-24-2019 06:08 AM
    ‎01-24-2019 06:08 AM

    Hey there @SrTrekker,

     

    This line right here tells you all you need to know:

     

    The attacker begins by compromising user credentials, or obtaining them through alternate means, of an account that can make changes to DNS records.

     

    If you want to prevent this from happening, all you have to do is practice basic security.

     

    • Have a password that is unique on all your GoDaddy related items, each different from the other (i.e. GoDaddy Account password, cPanel or other hosting password, any admin logins to the site itself; DON'T USE THE SAME PASSWORD FOR EVERYTHING)
    • Make sure the said password is not simple (like 123Password; instead try something like !2#P@s$w0rD!)

    Basically, they have to get access to your account first. And the only way they can do that is if you use the same password for everything and it's easy to guess or brute force attack. The weak link here is the user.

     

    So, if your passwords are good and secure, you'll be just fine.



    I am a GoDaddy End User - Just Like You
    * Please note that I DO NOT answer private messages. Please ask your question in the proper forum so the answer can assist EVERYONE in the community and not just you. If you contact me via PM for help, I will give you a price quote for my personal services. Thanks! *

    Once your issue is resolved,
    please be sure to come back and click accept for the solution

    Get Better Support on the Community Boards!
    Etiquette When Asking for Help from the Community


    Reply
    SrTrekker
    New
    In response to MrVapor
    ‎01-24-2019 07:50 AM
    ‎01-24-2019 07:50 AM

    So, what you are telling me, MrVapor, is that "Only through my GD account can the DNS be altered, i.e., there is no way a perpetrator can access the nameservers directly, (ns01.domaincontrol.com & ns02.domaincontrol.com), to hack a DNS record.  Is this correct?  (It would be good to have a GD employee confirm the security of the NS.)

     

    BTW, I already have 2 factor on my account.Thanks.

    0 Kudos
    Reply
    JesseW
    Community Manager
    Community Manager
    ‎01-24-2019 07:22 AM
    ‎01-24-2019 07:22 AM

    @MrVapor Great response! 

     

    @SrTrekker Another thing you can do (which is suggested in the document) is to add two-factor authentication to your account. You can find instructions on how to do this with your GoDaddy account here

     

    JesseW - GoDaddy | Community Manager | 24/7 support available at x.co/247support | Remember to choose a solution and give kudos.
    Reply

    You may also like...