Home Search

Beware of GoDaddy Phishing Email that May Target Squadhelp WLM Sellers

1

BrandLabs shared a warning post on Twitter this afternoon. While the email appears to be targeting Squadhelp sellers who utilize their White Label Marketplace (WLM), it is something anyone should be wary about:

According to the person who posted the warning, the email address that received this phishing email is used exclusively within his WLM website. Further, in order to see the email address, someone would have to click the contact us link. I am not sure if this means the person behind the phishing effort clicked the contact button or has an automated way to do it.

Stolen Domains Not The Only GoDaddy Phishing Threat

0

I’ve written a number of articles about phishing attempts made to induce GoDaddy customers into giving up their login credentials. I think phishing is one of the leading causes of domain name theft, and it appears  to have reached a crescendo in the last year. It seems that domain theft isn’t the only objective of phishing attackers.

Jeremy Kirk published an article on  CIO.com warning that attackers are using hijacked domain registrar accounts to  infect computers with malware.  “Hundreds of hacked domain name accounts registered through GoDaddy are being used as part of a highly effective campaign using the Angler exploit kit to infect computers with malware,” wrote Kirk. The article cited a blog post written by Nick Biasini, an outreach engineer with Cisco Systems.

Kirk went on to explain what is happening with the subdomains:

New GoDaddy Phishing Email: “Immediate Verification Required”

9

I want to share another GoDaddy account phishing email that is playing on the ICANN verification requirements to get people to open the email and possibly click a link to a phishing website. One giveaway is the link to a non-GoDaddy owned website that tries to give people the impression it is associated with the company. The email subject is “Immediate Verification Required” and it may have one of your domain names listed as well.

I won’t mention the website used to avoid giving it publicity, but if you click any links (or paste links into a browser), make sure the website is the one you intend to visit. In addition, the GoDaddy email should have your name or registrant name, and any email requiring action should have a corresponding notification in your account to confirm that it is an outstanding issue.

If you ever have a question about whether or not a domain name is a phishing email, or if you know it is, you can report a phishing email to GoDaddy very easily and they can confirm.

Here is the content of the email:

How to Report a GoDaddy Phishing Email

If you believe you received a phishing email that was supposedly from GoDaddy, you are encouraged to report the email directly to Go Daddy. Not only will this make the company aware of the phishing email targeting their customers, but it might help them shut down the phishing website.

To report a GoDaddy phishing email, visit the

GoDaddy Apologizes for “Insensitive” Bonus Fakeout Phishing Test

7

GoDaddy’s security has been under the microscope lately, with two high profile security incidents reported by Krebs On Security on November 21 and on March 31. I wrote about the first incident, which involved an account held by Escrow.com. With many employees working from home because of Covid-19, it has likely become a much more challenging task to ensure GoDaddy employees use best security practices to avoid being hacked or having systems or accounts compromised.

According to an article in The Copper Courier, GoDaddy tested its employees by deploying an email promising a holiday bonus, but it was really a phishing test in disguise:

GoDaddy “Universal TOS” Phishing Attempt

0

Email spam filters have gotten pretty good at catching phishing attempts. Most of the time, phishing emails are caught and or blocked by email providers and never even seen by the intended recipient. In some cases, the emails make it to the user’s inbox but are marked as spam / junk. This helps prevent phishing, but it’s not foolproof, and phishing or spearphishing are not always obvious.

Recent Posts

Squadhelp Adds Escrow.com as a Payment Option

1
Squadhelp has added Escrow.com as a payment option for buyers. The addition of the Escrow.com option was shared by ARIYAS on X this morning: 👍...

Some Thoughts on .AI Domain Names

19
There is no question that .AI domain names have become a hot topic of late. With considerable amounts of venture funding flowing into AI...

Handoff to Dan on Imported Leads Can be Confusing

0
I've been using the lead import option at Dan.com more regularly. Although the 5% commission is not ideal, transactions tend to move more quickly...

ArtificialIntelligence.com Goes Up for Sale

11
I tried to buy the ArtificialIntelligence.com domain name multiple times over the last 10 years. The emails I sent to the registrant went unanswered,...

EU Gives More IP Protection to Food & Drink Producers

0
Did you know that some well-known food and drink varieties are protected intellectual property regulations? Popular types of drinks and foods that are protected...