Back to Fred Mac Donald's Blog
The latest scam/phishing email doing to rounds targeting website owners is trying to exploit the new cPanel license changes.
The email is a plain and simple html based email without any images or personal information.
Sender: noreply@cpanel.net
Unfortunately, I do not have the email headers to see where it actually comes from
Email Subject Line: Account expiry notice
Email Content: This is an exact copy. The only change is I removed the link.
Hello,
This is to inform you that your CPANEL account will be expiring soon due to inactivity. You are required to sign in for account automatic renewal.
To sign in click here.
Thank you for using our services.
cPanel, L.L.C.
The link points to http://panelhost.zzz.com.ua/redirect.htm
3 things to note about the link
When you click the link, the redirection takes you to a different website https://fastshippinginternational.org/cphost/index.htm
Once again nothing to do with cPanel. However, the page displayed would look very familiar.
Fake cPanel page
Example of an actual cPanel login page
It would be easy to see how someone unfamiliar with cPanel would confuse the two.
Completing the fake page, you will actually be redirected to the official cPanel website without any notice.
Legit cPanel website at the time of writing.
it is very hard to keep up with different spam and phishing email filters on the email clients and mail servers. Altho, we at Exelwebs, are constantly updating the free scanners on our mail servers, it is virtually impossible to keep up.
To block nearly 100% of viruses, malware and spam before they ever reach your inbox you can invest in online 3rd-party filters. Exelwebs “sells” subscriptions from SpamExperts at a very affordable monthly subscription. You have 3 options to choose from, each available separately, but the idea would be to build up from the first till the last as your requirements changes.