As a record of this incident, we include the link to today’s Google search, which contains the aforementioned redirect: While this situation is not due to any malicious action, indeed, those who have performed the authentication have unintentionally shared their personal or corporate credentials with GoDaddy.Ĭurrently, we can only wait for Google to resolve this situation to prevent other users from being affected in the future. This same behavior occurred on August 19, 2021. This situation can be confirmed by the following HTTPS traffic capture:įrom what we have been able to analyze, this is not the first time this situation has happened. Upon completion of the authentication form, the user’s credentials are sent to GoDaddy’s Single Sign-On platform. This could have a big impact given that these credentials are usually the same ones that would be used to authenticate either with personal accounts or internal services of the companies they work for, such as VPN or other corporate applications. The direct consequences of this situation, in case some users are not aware of the problem caused by Google, would trigger multiple login failures in the GoDaddy panel, sending to this website the Office 365 authentication data. The consequences of the GoDaddy-Microsoft 365 mix-up The Microsoft 365 logo is displayed above the user and password fields, making it easier not to look at the less striking GoDaddy logo or the URL of the page being visited. Returning to the case at hand, we must point out that one aspect that aggravates the situation is the integration that GoDaddy has made with Microsoft in its login panel. However, it should be noted that sometimes this type of error is carried out by malicious actors, indexing in Google as the first result of a fake webmail/VPN portal of a company. There is no confirmation, but this redirection could be due to Microsoft’s integration with this domain provider to allow its users to customize the domains of their e-mail addresses, as shown in the following link: This link ( ), which is initially unrelated to GoDaddy, ends up redirecting to its web portal. In the image below, it shows how Google displays as the main «Sign In – Outlook» link the URL that ends up redirecting to GoDaddy: This could have allowed many users to get confused and trust this web portal with the credentials to access the Microsoft 365 suite. Today (at the time of this writing it’s October 3), when performing this Google search, a glitch in the famous search engine caused the targeted link to end up on the GoDaddy login page. This Google search usually yields the link to the Office portal as the first result. « Office 365 login» With those words, many people start their workday to authenticate to Microsoft’s web tools, with which their companies are integrated.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |