The other day, I was productively working and completing tasks when I took a moment to reconcile my email inbox.
While scanning through my email, I made notice of a message entitled, “Status Alert: Potential risk to server.”
So I opened the email and began reading through the following (see image below too):
Dear Valued GoDaddy Customer.
Your account contains more than 6026 directories and may pose a potential performance risk to the server. Please reduce the number of directories for your account to prevent possible account deactivation.
In order to prevent your account from being locked out we recommend that you create special tmp directory.
Or use the link below: <link here>
GoDaddy technical support.
– – – – – – – – – – – – – – – – – – – – – – – – –
Copyright (C) 1999-2014 GoDaddy.com, LLC. All rights reserved.
Screenshot of GoDaddy phishing email:
From a first glance, this email looks and reads like a legitimate email from GoDaddy.
However, once I carefully examined the email, comparing it to other emails I receive from GoDaddy, I noticed the following about this email:
- This email is not personalized in salutation
- Message is not an html email with GoDaddy branded images
- Does not include a support number or email
- Is signed GoDaddy technical support
- Does not include the GoDaddy mail address as all emails should due to CAN-SPAM act laws
- Provides a click here link instead of inviting me to sign into my GoDaddy account to take action
In addition, the text link and actual hyperlink that is provided in the email go to two different places. The shown text link gives the appearance of a GoDaddy link while if you click the link, you’re taken to a totally different website.
I didn’t click the link to figure this out, I simply hovered over the link and it was showing a www.nylonrifles.com website (not recommended to visit for fear of spyware or malware).
I don’t know what would have happened if I had clicked the link in this phishing email. I would assume it safe to say that I would have compromised my GoDaddy account.
In turn, this would have led to possibly losing access to services, allowing domains to be stolen, and allowing my payment information to be compromised.
Phishing emails, regardless whether GoDaddy or anyone else, will always be an opportunity for cyber criminals and thieves to take advantage of the uninformed and unassuming through careless actions.
Nevertheless, it is important to never blindly assume or click an email from what appears to be GoDaddy, or any provider for that matter.
It’s always best to visit and login to the provider’s website directly, and not via an email link.