Is it a phishing website when I receive a Master@Godaddy.com email?

Source: Internet
Author: User
Tags reset godaddy account
Recently busy with in-service exams, all day dizzy, last night to check the mail, suddenly received a Godaddy.com <Master@Godaddy.com> sent an email, prompting me that a domain name in the account is about to expire, however, this domain name is set to manual renewal. You need to click the link in the email to query the domain name information and complete renewal.
Dizzy I click "Go to My Renewals", into a phishing website http://www.godadby.com/myrenewals/myrenewals.aspx? Shopperid = 50221355 & tab = domains & DefaultFilter = all & prog_id = GoDaddy & myatabs = false & isc = bb50md60 & ci = 84856
 
Please note that the domain name of this site is godabdy.com, and the website of godaddy is godaddy.com. I did not notice the last suspicious part. I entered the godaddy user name and password directly below. After entering the user name and password, you can directly go to the official website of Godaddy to enter the user name and password. At this time, the user enters the Godaddy website normally and does not feel the information of his account has been stolen.
After a phishing website obtains user information, it is possible to transfer all domain names of the domain name holder. Fortunately, I recently did not register a domain name in Godaddy, and the first time I felt abnormal, I modified the password of godaddy. Remind friends that if you encounter similar problems in the future, please change the website password and important security authentication information as soon as possible.
At present, I have submitted the website of this phishing website to multiple security monitoring centers. After the website is included in the security center, I will go to this phishing website. Some browsers will prompt that the website is illegal. At last, the whois information of the domain name will be exposed, hoping to attract the attention of domain name holders:

Let's take a look at the retrieval method of an email that has been stolen.

 

Stolen
On April 9, October 15, I received a message from Godaddy.Reminder email.
At first, I thought it was a promotion advertisement by Godaddy. I didn't care about it. Then I checked the content and found that my account settings were updated.
Check whether the account has been stolen and log on to Godaddy to check whether the password is correct.
Use the password to retrieve the email address.
Later, I was too busy with my work, so I didn't care about this problem. I thought I would go back later and try again later.
At this time, I was wondering if I had forgotten my account password.
When I got home at night, I visited my blog and found a website called "Jin Long Quanxun-mobile.
The domain name must have been stolen.
Check the whios, found that all the information changed, the mailbox into a dashige20143@gmail.com.
So far, I have confirmed that my Godaddy account has been stolen.
Retrieved
After searching through the network, it was found that someone was also stolen, whios mailbox is also changed to dashige20143@gmail.com, Post address.
Then I searched for the Godaddy retrieval tutorial and sent an email to Godaddy.
Send an email to Godaddy at that night. The email content is as follows. (Poor english. Some of them translate using tools directly. Now I know how important it is to learn a foreign language !!)
The code is as follows: Copy code
My domain is liudon.org. Here is your domain name address.
I got an email today, prompted me to account modify.
Here is a screenshot of the reminder email sent to me by Godaddy.
I'm sure this is not my operation.
And now I can not log into my account.
And Reset My Password prompt email error.
Now my site can not visited.
Please help me !!!
There was an episode in the middle, I started to send the account to the support@godaddy.com, the result of the next day received a letter <Do you have a question for customer support?> . (Time difference !!)
If any problem occurs, call customer service.
Er, this is a bit difficult. It's okay to write and write English, but it's hard to make oral communication.
Search again, only to know is to send undo@godaddy.com this mailbox.
Because of the time difference, you can only wait after sending it.
I sent an email to undo@godaddy.com on the afternoon of October 16, and received an email from undo@godaddy.com on the afternoon of October 28. <Update [Incident ID: xxxxx]-My account was stolen!> Reply. (Xxxxx should be the accepted ticket number)
This means that I have to fill out a recovery application form and provide proof of identity. If I fail to receive the application within 10 days, the application will be closed.
I searched the internet and found that Godaddy did not recognize the Chinese ID card and needed to provide a passport certificate.
Tragedy: I have no passport.
Due to my account issue, it is difficult to handle it.
Later, I was not in charge of this matter, and I thought about when the passport should be handled.
Transfer
After the domain name is stolen, I have basically confirmed that I cannot get my domain name back.
After searching on the Internet, we found that more domain names were stolen and the hacker's personal information was leaked.
See Zhihu
On April 9, October 31, when I got up in the morning, I saw my cell phone and found that Godaddy sent me another email.After reading the email, I used my previous account to reset the password. They have transferred the domain name back to the previous account.
Log onto Godaddy immediately, apply for password reset, and retrieve your account and retrieve your domain name.
So far, the domain name has been stolen for exactly 15 days.
Reason for theft
After communicating with the same stolen people, we found that everyone had received a mail from the Master@Godaddy.com.
This is a phishing email. The address in the email is not the address of Godaddy !!!
The email address of the email sender can be forged.
Suggestions
After being stolen, please send an email to Godaddy as soon as possible to notify them to lock their accounts.
Then, provide proof of information as required, and wait for Godaddy to process it.
After retrieval, transfer the domain name out of Godaddy as much as possible. The security measures are too weak.
No verification is required for all operations. Only a reminder email is sent to you.

Godaddy official website: https://www.godaddy.com/

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.