GoDaddy “Universal TOS” Phishing Attempt

Email spam filters have gotten pretty good at catching phishing attempts. Most of the time, phishing emails are caught and or blocked by email providers and never even seen by the intended recipient. In some cases, the emails make it to the user’s inbox but are marked as spam / junk. This helps prevent phishing, but it’s not foolproof, and phishing or spearphishing are not always obvious.

I want to share a spoof GoDaddy email that seems to be making the rounds. From what I can gather, this is a spoofed email phishing attempt that is NOT from GoDaddy despite the appearance of being a GoDaddy. People who visit the link and enter their GoDaddy account information are at a major risk to have their GoDaddy account hacked.

GoDaddy customers (and customers of other registrars for that matter) should have two factor authentication turned on to help secure their account. GoDaddy now allows customers to use a YubiKey for 2 factor authentication, and other registrars also have 2FA options.

Here is the email going around:

Subject: Universal Terms of Service Agreement have expired.

Body:

GoDaddy
Universal Terms of Service Agreement
One or more items in our Universal Terms of Service Agreement have expired. Agree the updated Terms today to avoid any disruption of services.
Dear user, some elements of our Universal Terms of Service Agreement (ToS) have been modified for better service use. But don’t worry, you can still use your services after you read and agree the new ToS.

Continue >>

Please do not reply to this email, as responses to this message will not be answered.

Sincerely,
GoDaddy Support

It is of utmost importance that you are sure an email is actually from the proported sender before clicking any links. I like to directly navigate to a registrar’s website any time I receive an email where action is required.

Elliot Silver
Elliot Silver
About The Author: Elliot Silver is an Internet entrepreneur and publisher of DomainInvesting.com. Elliot is also the founder and President of Top Notch Domains, LLC, a company that has closed eight figures in deals. Please read the DomainInvesting.com Terms of Use page for additional information about the publisher, website comment policy, disclosures, and conflicts of interest. Reach out to Elliot: Twitter | Facebook | LinkedIn

LEAVE A REPLY

Please enter your comment!
Please enter your name here

Recent Posts

Zomato Launches Nugget; Acquires Nugget.com

0
Last week, James Booth announced that he sold the Nugget.com domain name, which was listed for sale via Atom.com. He was unable to share...

TRC.com Sets Auction Record at Sav.com (Update)

5
TRC.com expired at the end of November 2024. The domain name was apparently registered at a domain registrar that doesn't have a deal with...

Consider Removing “WHOIS” from Domain Name Contracts

0
I use several different domain name purchase or sale agreements depending on the situation. Each of these agreements references "WHOIS" as a means of...

I Appreciate Having a Broker as a Counterparty

10
I appreciate being able to discuss the sale of a domain name with a domain broker representing a third party. Not only does this...

Gong.com UDRP Should be RDNH

1
The Gong Show was a television talent show on ABC in the late 1970s. Contestants would perform a variety of acts while being judged...