This is my turn. Update: Found.

i advice use yahoo email and enable 2FA security on yahoo and on godaddy. so even if they hack password of your email then still they need your mobile to access your account.

Shams said:

i advice use yahoo email and enable 2FA security on yahoo and on godaddy. so even if they hack password of your email then still they need your mobile to access your account.

Click to expand...

Yahoo email? Is Gmail email vulnerable? Please guide.

Pliq said:

Yahoo email? Is Gmail email vulnerable? Please guide.

Click to expand...

I'm using yahoo and every time to sign in to yahoo account. i need 2FA verification. i don't know gmail has that option or not

Shams said:

I'm using yahoo and every time to sign in to yahoo account. i need 2FA verification. i don't know gmail has that option or not

Click to expand...

Oh I get it now, thanks.

Yup, you are right, I also have Yahoo's 2 step verification on one of my personal email with them. Same here, don't know if Gmail has it or not.

hy today i got email from
[email protected]

he ask me to send doc id, is this email from godaddy or phising ?

eko prasetio said:

hy today i got email from
[email protected]

he ask me to send doc id, is this email from godaddy or phising ?

Click to expand...

I would suggest confirming the email from GD Tech / Sales Rep before clicking on any link or doing anything.

Pliq said:

I would suggest confirming the email from GD Tech / Sales Rep before clicking on any link or doing anything.

Click to expand...

i have send my doc id...

eko prasetio said:

i have send my doc id...

Click to expand...

Did you send without verifying with them??? If you did I would seriously hurry up and call them...I mean...now

Pliq said:

Oh I get it now, thanks.

Yup, you are right, I also have Yahoo's 2 step verification on one of my personal email with them. Same here, don't know if Gmail has it or not.

Click to expand...

Gmail has 2 step verification i use them instant code never has any issue receiving code.

eko prasetio said:

i have send my doc id...

Click to expand...

Hi ,

Did your Godaddy account get blocked ?

Elenka said:

Hi ,

Did your Godaddy account get blocked ?

Click to expand...

i think no..
but in email they give 48 hour to send doc id or my accoun will lock permanent.
today i want contact gd support.
wanna ask about this.

I just googled and found out that it could be a fraud department , maybe they just want to check some info .

If you receive an email you are unsure about the best thing to do is contact Godaddy sales support and never click on the link if they ask you to...

Domain market is very lucrative at the moment so it will now be high on the list for hackers and fraudsters to hijack your account!

ccinquiries@ is a legitimate email address from us but you should always view the full header of the email which shows the actual source, who sent the email what ips were used etc. Or simply call in and verify it was from us. Just because there is an email from that address I would not assume that it wasn't spoofed. Always better to be safe than sorry.

Hi, I reg at 1and1 and Namesilo.
I dont care about 1and1, they are too slow in action that it is impossible to transfer or push something from there in short time.
And at Namesilo I activated 5 question and alerts on login, on push, on dns change. . on everything. .... And alerts come to 2 emails accounts. .
It is impossible to push or transfer without answer 5 questions and even if somebody answer them all I still recieve alert on my 2 accounts.
Do you think I need to do something more?
I just remember I have 2 names at GD, where should I activate there additional defence?

@Elenka, did you get back your domains?

Yikes, sorry to hear about your loss.

Hope you are able to recover the domain speedily. Seems to be increased reports from people getting their accounts hacked and domains stolen.

Yes sorry to hear this news, it's becoming all too common lately

There are so many phishing and scam emails going around right now.

Seriously: Never, ever click a link in an email unless you are expecting that email -- such a transfer request you've made or an account verification that you JUST clicked to generate. And even then, double check !!!

It's becoming too common and that too common becomes outrageously common when all the thefts are basically from 1 registrar...

photonmymind said:

It's becoming too common and that too common becomes outrageously common when all the thefts are basically from 1 registrar...

Click to expand...

That's a function of size. Just like how PayPal has one of the worst phishing reps in payments.

21x20 said:

That's a function of size. Just like how PayPal has one of the worst phishing reps in payments.

Click to expand...

I beg to disagree. I understand that size matters in this case but I believe it's not the only reason

photonmymind said:

It's becoming too common and that too common becomes outrageously common when all the thefts are basically from 1 registrar...

Click to expand...

Maybe ... I'm spread across 4 pretty big registrars and GD is the only one I'm seeing the spam and phishing emails for. The current one changes one of the d's in the domain to a "b" instead. Really easy to miss if you're not looking at the browser bar.

21x20 said:

Maybe ... I'm spread across 4 pretty big registrars and GD is the only one I'm seeing the spam and phishing emails for. The current one changes one of the d's in the domain to a "b" instead. Really easy to miss if you're not looking at the browser bar.

Click to expand...

That's my point. We can clearly expect to see more thefts from a bigger registrar than from a smaller one; there should be a sort of "proportion" I guess. Like number of domains / thefts...so far there seem not to be thefts ( made public ) from any other registrar and this fact itself should make people wonder why.

As for the emails this is Paul'e explanation
" Go Daddy could easily prevent fake emails appearing to be from godaddy com if they bothered to properly configure DMARC. "
He posted it in my thread about the last GD fake email..

photonmymind said:

That's my point. We can clearly expect to see more thefts from a bigger registrar than from a smaller one; there should be a sort of "proportion" I guess. Like number of domains / thefts...so far there seem not to be thefts ( made public ) from any other registrar and this fact itself should make people wonder why.

As for the emails this is Paul'e explanation
" Go Daddy could easily prevent fake emails appearing to be from godaddy com if they bothered to properly configure DMARC. "
He posted it in my thread about the last GD fake email..

Click to expand...

I don't see how DMARC would help ... like I said in the ones I'm seeing, there's not actually coming from "GoDaddy.Com" ... They're coming from and linking out to GoDaddy with one of the D's changed to a B. DMARC can't stop that. And unless you look at the actual email address and/or URL -- rather than the "pretty" email name and clickable text link... You'd not notice it.

I'd say that perhaps GoDaddy itself just sends too many emails -- and so that makes them a target for spammers because people just become too accustom to clicking on emailed links from GoDaddy over other registrars where the approach was found to be less productive ?