Skip to main content

Scam impersonating emails from cPanel

Comments

7 comments

  • cPanelAnthony
    Hello! The following article explains how to handle phishing emails. Could you review and let me know if you have questions?
    0
  • Secmas
    As I said: "I have already updated my filters to block emails like this, but think that cPanel should do a kind of KEY to prevent scammers to impersonate this or any other email coming from the OS in the servers. " That could be better than creating rules for that, just my 2 cents. But thank you for answering back. Regards, Sergio
    0
  • cPanelAnthony
    Thank you for the confirmation. There's no way for us to stop phishing emails from servers outside our control completely. However, we do take these matters seriously and strive to ensure legitimate cPanel emails can be easily determined to be real.
    0
  • Serra
    I've gotten a couple of these on my own personal domain. It looked completely legit enough to fool me. However as a rule I don't click on links in emails I'm not expected, I went to the account and realized the email was incorrect. When I examined the links I found that they were not going back to my server. Unfortunately, there is nothing that cPanel can do to block or prevent these emails, but I think we need to consider that sending emails with links in them in the first place is becoming problematic. I think cPanel should reformat their emails and remove the links to the accounts. Rather the email should say 'Please log into your account with the username: jsmithweb' for example and not provide a link so when users see a link they will know it is a scam. Obviously, the solution here is to create a closed system where messages about cPanel accounts are sent via push messages rather than email. cPanel should consider doing that as the cost wouldn't be very high and it would allow users to get messages that are secure.
    0
  • cPanelAnthony
    Thank you for the feedback!
    0
  • Secmas
    I still think that using a HASH code created by the server and added to emails sent by cPanel on that server would be easier. If the email misses that code or is incorrect the system could delete the email or mark it as spam.
    0
  • cuzzmunger
    I've just had several of these this week, and several of my customers have emailed me directly about it. Just blocked gnetwork@fmt06.web.com.ph & pplanguages@server.distecnoweb.co
    0

Please sign in to leave a comment.