Domain name registration and web development services provider Web.com has disclosed a recent data breach that impacts users’ account information, and apparently also affects customers of its Network Solutions and Register.com brands.
The breach took place in late August 2019 when an unauthorized third party illegally accessed “a limited number of our computer systems,” the company explained in an online notification. Web.com said it only discovered the intrusion on Oct. 16.
Exposed information includes customers’ names, addresses, phone numbers, email addresses and information regarding services offered to a given account holder. “We encrypt credit card numbers and no credit card data was compromised as a result of this incident,” the notification points out.
Although the Web.com notification does not explicitly reference Network Solutions or Register.com, security expert Brian Krebs reported on his own website that all three brands are impacted.
Web.com’s notification is hosted at the URL address notice.web.com. SC Media could not find an obvious or intuitive way to access or link to the online notification via the Web.com, NetworkSolutions.com or Register.com websites.
Web.com said that in response to the incident, it engaged a cybersecurity firm to investigate, informed federal authorities, began notifying affected customers via email and its website, and is requiring all users to reset their account passwords.