Domain registrar’s personalized email service is target of phishers.
Hover Personalized Email, a service from Tucows, is reporting that its members are receiving phishing emails.
The services lets you sign up for a personalized email address using one of Tucows’ 40,000 last name domain names, which it obtained when it acquired NetIdentity. For example, people with the last name Smith can get [email protected].
Here’s an example of the phishing email:
Dear user of the smith.net mailing service!
We are informing you that because of the security upgrade
of the mailing service your mailbox ([email protected]) settings
were changed. In order to apply the new set of settings click
on the following link:
Best regards, smith.net Technical Support.
Of course the link is spoofed in the actual email. Hover stresses that all emails coming from Hover will be clearly identified as being from Hover, not something like smith.net.