GoDaddy “Universal TOS” Phishing Attempt

Email spam filters have gotten pretty good at catching phishing attempts. Most of the time, phishing emails are caught and or blocked by email providers and never even seen by the intended recipient. In some cases, the emails make it to the user’s inbox but are marked as spam / junk. This helps prevent phishing, but it’s not foolproof, and phishing or spearphishing are not always obvious.

I want to share a spoof GoDaddy email that seems to be making the rounds. From what I can gather, this is a spoofed email phishing attempt that is NOT from GoDaddy despite the appearance of being a GoDaddy. People who visit the link and enter their GoDaddy account information are at a major risk to have their GoDaddy account hacked.

GoDaddy customers (and customers of other registrars for that matter) should have two factor authentication turned on to help secure their account. GoDaddy now allows customers to use a YubiKey for 2 factor authentication, and other registrars also have 2FA options.

Here is the email going around:

Subject: Universal Terms of Service Agreement have expired.

Body:

GoDaddy
Universal Terms of Service Agreement
One or more items in our Universal Terms of Service Agreement have expired. Agree the updated Terms today to avoid any disruption of services.
Dear user, some elements of our Universal Terms of Service Agreement (ToS) have been modified for better service use. But don’t worry, you can still use your services after you read and agree the new ToS.

Continue >>

Please do not reply to this email, as responses to this message will not be answered.

Sincerely,
GoDaddy Support

It is of utmost importance that you are sure an email is actually from the proported sender before clicking any links. I like to directly navigate to a registrar’s website any time I receive an email where action is required.

Elliot Silver
Elliot Silver
About The Author: Elliot Silver is an Internet entrepreneur and publisher of DomainInvesting.com. Elliot is also the founder and President of Top Notch Domains, LLC, a company that has closed eight figures in deals. Please read the DomainInvesting.com Terms of Use page for additional information about the publisher, website comment policy, disclosures, and conflicts of interest. Reach out to Elliot: Twitter | Facebook | LinkedIn

Leave a Reply

Recent Posts

Taking a Blog Break

45
I have been writing articles on my blog since 2007. I have been fortunate to have the advertising support of many domain industry companies...

Some Thoughts About 2023

3
As the year winds down, I have been thinking about what to expect for the upcoming year. I am hopeful that it will be...

How I Am Preparing for the New Year

4
Less than a week remains in 2022. This is generally a quiet week in terms of domain name sales, so I tend to spend...

Squadhelp Introduces AI Business Name Generator

0
Earlier this month when OpenAI's ChatGPT chatbot was trending, I discussed some of the ways artificial intelligence (AI) could be used for domain investing....

I Don’t Always Have to Win

1
I am a highly competitive person. Whether I am playing a tennis match against a friend or playing a board game with my family,...