 |
|  | |||||||
 |
 |
| | LinkBack | Thread Tools | Display Modes |
04-10-2009, 12:46 PM
| #1 (permalink) |
| Bloody lovely  Last Online: Today 01:14 PM iTrader: (393) Join Date: Feb 2004
Posts: 23,716
DNF$: 3,351 Location: USA
Country:                 |  CAUTION! GoDaddy phishing happening right now The following email appears to come from support@godaddy.com but it points to: http://205.234.236.23/~ytrindic/ It's a server in Pakistan mzwebhost.com. Contacting their upstream provider. +++++++++++ Dear Customer, This notification is generated automatically as a service to you. Because of unusual number of invalid login attempts on you account, we had to believe that, their might be some security problem on you account. So we have decided to put an extra verification process to ensure your identity and your account security. Please click on sign in to domain servers to continue to the verification process and ensure your account security. It is all about your security. Thank you. and visit the customer service section. please contact us within 1 days. If you need to address this matter, or in any way need further assistance or technical support, call us any time at (480) 505-8877 or email us at support@godaddy.com. We appreciate your business! Sincerely, GoDaddy.com DomainAlert team
__________________  DomainGang.com - Domainers' Most Awesome News Source Acroplex - Web & Graphics Acro.net - My Blog |
|   |
| Sponsored Ads |
|
04-10-2009, 01:00 PM
| #2 (permalink) |
| iSpoof.com  Last Online: Today 10:17 AM iTrader: (112) Join Date: Sep 2002
Posts: 10,916
DNF$: 51,153 Location: 96.net  | yeah i got two of these emails yesterday knew it was fake when i did a "hover over" the link also who would attempt to steal my crap names at godaddy?
__________________  worldiptv.com * svc.net * belisted.com * mobi.us.com * sop.net * qfm.net * upyo.com * vioz.com * Need A SedoPro Account PM Me |
| |
|
04-10-2009, 01:03 PM
| #3 (permalink) |
| Bloody lovely Last Online: Today 01:14 PM iTrader: (393) Join Date: Feb 2004
Posts: 23,716
DNF$: 3,351 Location: USA
Country: | I got 5 so far. Complaint sent via http://www.servercentral.net/supportrequest
__________________ DomainGang.com - Domainers' Most Awesome News Source Acroplex - Web & Graphics Acro.net - My Blog |
|
| |
|
04-10-2009, 01:07 PM
| #4 (permalink) |
| DNF Addict  Name: Doug Last Online: 11-05-2009 08:05 PM iTrader: (175) Join Date: Jul 2004
Posts: 6,884
DNF$: 68,540 Location: Florida
Country: | I received 7 over the past two days. I forwarded them to Godaddy, but likely won't do any good.
__________________ Domain Research Tool - Save $125!! Discounted DNF$ For Sale - Pimp RPG Game Alphabetize.org  |
|
| |
|
04-10-2009, 01:09 PM
| #5 (permalink) |
Country:          |  thanks very much Acro, as ever you are always on top of things cheers. I actually just got 5! If it had been one i would maybe have clicked but seen the redirect. I havd already junked them as phishing and redirected one to godaddy support. Spread the word on the forums guys! |
|
| |
|
04-10-2009, 01:12 PM
| #6 (permalink) |
| Bloody lovely Last Online: Today 01:14 PM iTrader: (393) Join Date: Feb 2004
Posts: 23,716
DNF$: 3,351 Location: USA
Country: | NP Pred. The email is very well constructed, also the form page itself that takes the username/password is exceptionally done. I submitted a few pairs such as "fbi_is_coming/sore_loser" - hopefully they will be shut down soon. Just complain using the form above.
__________________ DomainGang.com - Domainers' Most Awesome News Source Acroplex - Web & Graphics Acro.net - My Blog |
|
| |
|
04-10-2009, 01:14 PM
| #7 (permalink) |
| Platinum Lifetime Member  Last Online: Today 12:14 PM iTrader: (21) Join Date: Jan 2006
Posts: 3,069
DNF$: 1,397 Location: Hillsboro, OR
Country:    | Whoa, got several of these. Thanks for the heads up Theo.
__________________ Titan Icons |
|
| |
|
04-10-2009, 01:15 PM
| #8 (permalink) |
| Bloody lovely Last Online: Today 01:14 PM iTrader: (393) Join Date: Feb 2004
Posts: 23,716
DNF$: 3,351 Location: USA
Country: | The form and images are hosted at Code: http://elpos.ba/galerija/albums/userpics2/msg/ Some photos of the sore losers implicated in this scam: Code: http://elpos.ba/galerija/albums/userpics2/ado.jpg http://elpos.ba/galerija/albums/userpics2/enes.JPG http://elpos.ba/galerija/albums/userpics2/square00.JPG http://elpos.ba/galerija/albums/userpics2/square05.JPG http://elpos.ba/galerija/albums/userpics2/normal_square06.JPG http://elpos.ba/galerija/albums/userpics2/nijaz.JPG http://elpos.ba/galerija/albums/userpics2/kancelarija1.JPG
__________________ DomainGang.com - Domainers' Most Awesome News Source Acroplex - Web & Graphics Acro.net - My Blog Last edited by Acro; 04-10-2009 at 01:20 PM.. Reason: Automerged Doublepost |
|
| |
|
04-10-2009, 01:24 PM
| #10 (permalink) | |
| Platinum Lifetime Member Last Online: Today 12:14 PM iTrader: (21) Join Date: Jan 2006
Posts: 3,069
DNF$: 1,397 Location: Hillsboro, OR
Country: | Quote:
__________________ Titan Icons | |
|
| |
|
04-10-2009, 01:25 PM
| #11 (permalink) |
| Bloody lovely Last Online: Today 01:14 PM iTrader: (393) Join Date: Feb 2004
Posts: 23,716
DNF$: 3,351 Location: USA
Country: | Probably so. Code: link to a toolkit http://elpos.ba/galerija/albums/userpics2/boom.php
__________________ DomainGang.com - Domainers' Most Awesome News Source Acroplex - Web & Graphics Acro.net - My Blog |
|
| |
|
04-10-2009, 01:29 PM
| #12 (permalink) | |
| Platinum Lifetime Member Last Online: Today 12:14 PM iTrader: (21) Join Date: Jan 2006
Posts: 3,069
DNF$: 1,397 Location: Hillsboro, OR
Country: | Quote:
__________________ Titan Icons | |
|
| |
|
04-10-2009, 01:31 PM
| #13 (permalink) |
| Bloody lovely Last Online: Today 01:14 PM iTrader: (393) Join Date: Feb 2004
Posts: 23,716
DNF$: 3,351 Location: USA
Country: | Looks like a root toolkit that can perform other penetration tasks remotely. Also it links to http://milw0rm.com which is a known repository of exploits. These ****ers need to be shut down.
__________________ DomainGang.com - Domainers' Most Awesome News Source Acroplex - Web & Graphics Acro.net - My Blog |
|
| |
|
04-10-2009, 02:01 PM
| #16 (permalink) |
| Dances With Dogs  Name: Dances With Dogs Last Online: Today 12:58 PM iTrader: (72) Join Date: Dec 2006
Posts: 10,101
DNF$: 24,765
Country:  | Yea, DNFers, Mobility, NPers post on your twitter accounts also. Many noobs (and veterans) may fall for this. Phew, what a relief. And to think I had to acually renew domain names. =)
__________________  Conservative With A Conscience Last edited by Doc Com; 04-10-2009 at 02:03 PM.. Reason: Automerged Doublepost |
|
| |
|
04-10-2009, 02:43 PM
| #17 (permalink) | |
| DNF Addict  Last Online: Yesterday 10:37 AM iTrader: (13) Join Date: Oct 2002
Posts: 3,131
DNF$: 12,175 Location: Nirvana
Country: | Quote:
| |
|
| |
|
04-10-2009, 08:02 PM
| #18 (permalink) |
| Bloody lovely Last Online: Today 01:14 PM iTrader: (393) Join Date: Feb 2004
Posts: 23,716
DNF$: 3,351 Location: USA
Country: | Looks like the hacking tools have been removed. The IP that was sending the emails has also been turned off.
__________________ DomainGang.com - Domainers' Most Awesome News Source Acroplex - Web & Graphics Acro.net - My Blog |
|
| |
|
04-10-2009, 08:29 PM
| #20 (permalink) | |
| Platinum Lifetime Member Last Online: Today 12:14 PM iTrader: (21) Join Date: Jan 2006
Posts: 3,069
DNF$: 1,397 Location: Hillsboro, OR
Country: | Quote:
__________________ Titan Icons | |
|
| |
|
| Currently Active Users Viewing This Thread: 1 (0 members and 1 guests) | |
| Thread Tools | |
| Display Modes | |
| |
Linear Mode
