GoDaddy “Universal TOS” Phishing Attempt

Email spam filters have gotten pretty good at catching phishing attempts. Most of the time, phishing emails are caught and or blocked by email providers and never even seen by the intended recipient. In some cases, the emails make it to the user’s inbox but are marked as spam / junk. This helps prevent phishing, but it’s not foolproof, and phishing or spearphishing are not always obvious.

I want to share a spoof GoDaddy email that seems to be making the rounds. From what I can gather, this is a spoofed email phishing attempt that is NOT from GoDaddy despite the appearance of being a GoDaddy. People who visit the link and enter their GoDaddy account information are at a major risk to have their GoDaddy account hacked.

GoDaddy customers (and customers of other registrars for that matter) should have two factor authentication turned on to help secure their account. GoDaddy now allows customers to use a YubiKey for 2 factor authentication, and other registrars also have 2FA options.

Here is the email going around:

Subject: Universal Terms of Service Agreement have expired.

Body:

GoDaddy
Universal Terms of Service Agreement
One or more items in our Universal Terms of Service Agreement have expired. Agree the updated Terms today to avoid any disruption of services.
Dear user, some elements of our Universal Terms of Service Agreement (ToS) have been modified for better service use. But don’t worry, you can still use your services after you read and agree the new ToS.

Continue >>

Please do not reply to this email, as responses to this message will not be answered.

Sincerely,
GoDaddy Support

It is of utmost importance that you are sure an email is actually from the proported sender before clicking any links. I like to directly navigate to a registrar’s website any time I receive an email where action is required.

Elliot Silver
Elliot Silver
About The Author: Elliot Silver is an Internet entrepreneur and publisher of DomainInvesting.com. Elliot is also the founder and President of Top Notch Domains, LLC, a company that has closed eight figures in deals. Please read the DomainInvesting.com Terms of Use page for additional information about the publisher, website comment policy, disclosures, and conflicts of interest. Reach out to Elliot: Twitter | Facebook | LinkedIn

Leave a Reply

Recent Posts

How to Buy a Domain Name That is Owned by Someone

0
For a domain investor, buying a domain name is second nature. Investors hand register domain names, purchase domain names via expiry and private auctions,...

My 2023 Domain Industry PMC Jersey

0
For a number of years, I have created a domain industry Pan-Mass Challenge jersey to raise funds for Dana-Farber Cancer Institute. Many domain industry...

Chat.com Profitably Resold for 8 Figures

0
In March of this year, I reported on the sale of Chat.com. The domain name was acquired by HubSpot Co-Founder Dharmesh Shah for more...

First Look at my 2023 Domain Industry PMC Jersey

1
This August, I will be riding in my 10th Pan-Mass Challenge ride to raise funds for Dana-Farber Cancer Institute. I will be riding...

Just Add “The”

4
I went to the post office the other day to buy stamps. I had a brief conversation with the person working at the counter,...