FTC Orders GoDaddy to Overhaul Security After Years of Lax Practices

The web hosting giant faces mandatory reforms following multiple breaches and misleading claims about its security measures.

The FTC accused GoDaddy of failing to implement basic security measures, such as multi-factor authentication and network monitoring, since 2018.
Between 2019 and 2022, GoDaddy experienced several major breaches, exposing customer websites and data to unauthorized access.
The proposed settlement requires GoDaddy to establish a comprehensive information security program and undergo independent biennial reviews.
GoDaddy is prohibited from misrepresenting its security practices and must ensure secure connections and proper data handling protocols.
The company stated it has already implemented many of the required measures and expects minimal financial impact from the agreement.