I want to share a warning that I received from a reader about an apparent phishing email that seems to be targeting domain names registered at Enom. The domain name that was used has Enom in it, but it was not Enom.com.
The person who reported the email to me said, “I received 4 today for different domains. All CCC,com domains.” This may indicate that the person is targeting a specific type of domain name, so be on the lookout!
Phishing emails are dangerous because they can lead to stolen domain names. They tend to look like authentic emails from a domain registrar, and this leads to people clicking on them and entering information that would likely compromise their accounts. Domain thieves can then steal the domain names more easily.
I recommend that you use two factor authentication at your domain registrar and not click on any links within emails to ensure that you don’t fall prey to a phishing attempt. I also recommend reporting phishing attempts to the domain registrar so they can be aware of these phishing attempts.
Thank you to Richard for sharing this warning with me. The email he received is below, with the verification code and domain name removed from the email:
As of Feb 1, 2015, the Internet Corporation for Assigned Names and Numbers (ICANN) has mandated that all ICANN accredited registrars begin verifying the WHOIS contact information for all new domain registrations and Registrant contact modifications.
You have registered one or more domains from Enom Inc. and verification of the Registrant email address is required for these domain name(s) to remain active. Please click the link below to verify the email address. You have until 03/01/2015 to verify this email address. After this date, the domain name(s) will be suspended until the email address is verified. please cut-and-paste the following URL into an open web browser to complete the verification process:
Once you click the link, your email address will be instantly verified and there is nothing further for you to do on the following domains: