Reuters reports:
Web hosting company GoDaddy Inc said on Monday email addresses of up to 1.2 million active and inactive Managed WordPress customers had been exposed in an unauthorised third-party access.
The company said the incident was discovered on November 17 and the third-party accessed the system using a compromised password.
Read more on Financial Express.
GoDaddy was criticized by some on social media for failure to notify consumers on its website about the breach while reporting it to the SEC in a filing. This is not the way consumers should first find out about a breach.