Hackers Abuse Google Ads for GoDaddy ManageWP Phishing
Hackers are using malicious Google search advertisements to direct users to phishing pages designed to steal GoDaddy ManageWP credentials.
Threat actors are actively abusing Google's sponsored search results to conduct phishing attacks targeting GoDaddy's ManageWP platform. By purchasing advertisements that appear at the top of search results, attackers are luring users to fraudulent login pages designed to harvest credentials for the website management service [BleepingComputer].
The campaign specifically targets administrators who use ManageWP to oversee fleets of WordPress websites. Once a victim enters their credentials into the malicious site, the attackers gain unauthorized access to the ManageWP dashboard, potentially allowing them to compromise all websites managed through that account.
Users are advised to exercise extreme caution when clicking on sponsored search results and to verify the URL of the landing page before entering any sensitive information. Enabling multi-factor authentication (MFA) on ManageWP accounts is strongly recommended as a primary defense against credential theft.