Suspicious Domain Email

Recently I got a suspicious message through my contact form stating my domain is about top be cancelled. Several things put up reg flags.

  1. The issue requires immediate action.
  2. It threatens dire consequences if no action is taken.
  3. It comes from a company I've never dealt with.

There was also the minor niggle of grammar and spelling that is not quite right.

Don't respond to the email. Delete it. Do not click on the links. It is highly likely to be linked to malware. A couple of online malware scanners didn't detect direct malware on the links but it did show up in security blacklists.

The message reads:

BODY TERMINATION OF DOMAIN insert domain name here Invoice#: 491343 Date: 20 Mar 2021

IMMEDIATE ATTENTION REGARDING YOUR DOMAIN insert domain name here IS ABSOLUTLY NECESSARY

TERMINATION OF YOUR DOMAIN insert domain name here WILL BE COMPLETED WITHIN 24 HOURS

Your payment for the renewal of your domain insert domain name here has not received yet

We have tried to reach you by phone several times, to inform you regarding the TERMINATION of your domain insert domain name here CLICK HERE FOR SECURE ONLINE PAYMENT: Do not click link

IF WE DO NOT RECEIVE YOUR PAYMENT WITHIN 24 HOURS, YOUR DOMAIN insert domain name here WILL BE TERMINATED!

CLICK HERE FOR SECURE ONLINE PAYMENT: Do not click link

YOUR IMMEDIATE ATTENTION IS ABSOLUTELY NECESSARY IN ORDER TO KEEP YOUR DOMAIN insert domain name here

The submission notification insert domain name here will EXPIRE WITHIN 24 HOURS after reception of this email

No third party has the power to cancel your domain name before its expiry date. If you have any concerns check with your own domain name provider or web developer.

Posted in Security on Mar 21, 2021