Malicious Fake Godaddy Domain Termination Email Alert

I just received an extremely suspicious email from “Godaddy” claiming that my domain name was going to be terminated soon. It looked nothing like past emails from Godaddy, and had many red flags that made it pretty obvious that it wasn’t legitimate.

Here is some additional information from it:

Subject: Mandatory Alert: Termination of {example.com} in progress.

From: GoDaddy <engineer3_cebu@ph.lantro.com> via lantrosingapore.onmicrosoft.com

Tired of dealing with your slow WordPress website? Email me at brian@pagecrafter.com and mention the code #FreeHosting10 for two free months of lightning-fast WordPress hosting. We will even migrate you for free!

Body (Links removed for obvious reasons):

godaddy-logo

 

Dear brian,

This important notification is sent (email@example.com) we recommend you to assign values to your email address to avoid closure.

For a better performance on our server to avoid mail server disconnecting. In due time your account activities will be suspend till proper assigning.


NB: Your account is debugging, manage your dashboard settings to reset your mail functioning directly from our GCC source unit to restore access.

 

Contact your provider here > > > > > > > > > > (link removed)

 

GoDaddy  © 2018 Inc setup team
————————————————————————————————————————————————————–

> > > > > > > > > > > >  Please do not reply this message.  < < < < < < < < < < < <

This message contains confidential information and is intended only for the individual named. If you are not the named addressee you should not disseminate, distribute or copy this e-mail. Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system.

E-mails are not encrypted and cannot be guaranteed to be secure or error-free as information could be intercepted, corrupted, lost, destroyed, arrive late or incomplete, or contain viruses. The sender therefore does not accept liability for any errors or omissions in the contents of this message which arise as a result of e-mail transmission.

LanTroVision (S) Ltd and its subsidiaries and associates reserves the right to retain all messages. Messages are protected and accessed only in legally justified cases.

 

It’s not legitimate, in case that wasn’t obvious.

The terrible grammar, the non-Godaddy emails and links, and even explicit references to a third-party organization makes it pretty clear that this is not a legitimate Godaddy email. Odds are, if I clicked any of the links, I’d be brought to a fake Godaddy login page and would be asked to submit my information.

The phishers would then use that information to access my real Godaddy account.

Do not ever give out your login credentials to anyone, and always navigate straight to Godaddy when logging in. You can also check your address bar to verify you are at the correct URL (godaddy.com). There should also be the green lock icon, indicating a valid SSL certificate.

Don’t get scammed! Be safe out there.

About Brian Johnson

Brian Johnson is a website developer and designer living in Minneapolis, Minnesota with a passion for code and WordPress. He spends his days building WordPress websites for small businesses, developing new code with the online community, and living life.