A massive phishing campaign is actively targeting GoDaddy customers by sending counterfeit emails containing malicious links. The criminals are utilizing a clever spoof that masks their identity.
All GoDaddy Users Must Be Extremely Cautious
One of the major phishing attacks that are being carried out by criminal users is targeting GoDaddy customers. Potential targets receive a legitimate-looking email message that contains spoofed header (so it appears as [email protected]) that contain the message. In it, the criminals inform the target victims that GoDaddy is limiting their incoming email messages limit and are offered a 2GB free space. To react to the message, the users are given a malicious link that leads to a phishing site.
There the account credentials are asked by the phishing developers. Fortunately, the Google Chrome web browser has already marked the site as malicious and opens up a distinct warning page to inform the users. Spoofed email headers and massive phishing campaigns have been reported by other large companies such as Paypal.
Owners of GoDaddy sites and all users that utilize their services should be extremely cautious when opening emails that contain such information. And if you are not their customer, always remember that such notifications are often published on the official site of the relevant service. Do not trust email messages that ask for your account information, as those are already stored on the company’s servers.
Other schemes that the criminals utilize are password resets, account change emails, etc.