Domain registration phishing e-mail
-
I need to open an e-mail dialog with somebody about this – I have questions which are not suitable for a public forum. Please advise on how I can contact support privately.
Thanks.
The blog I need help with is: (visible only to logged in users)
-
You will have to wait until after the weekend as support has been closed for the company annual meeting all this week. From Monday you can contact support and speak to a member of staff.
-
I received an email today reminding me of my upcoming renewal. Moments later, I received this:
From (email visible only to moderators and staff) Thu Oct 2 17:59:24 2014
X-Apparently-To: xxx via 46.228.38.196; Thu, 02 Oct 2014 16:59:24 +0000
Return-Path: <(email visible only to moderators and staff)>
Received-SPF: pass (domain of secureserver.net designates 72.167.238.124 as permitted sender)
IGVtYWlsIGFkZHJlc3MuIEFjdGlvbiByZXF1aXJlZDogUGxlYXNlIHZlcmlm
eSB5b3VyIGVtYWlsIGFkZHJlc3MuIERlYXIgRW1tYSBGcmVlbWFuLCBXZSBu
b3RpY2VkIHRoYXQgeW91IG5lZWQgdG8gdmVyaWZ5IHlvdXIgZW1haWwgYWRk
cmVzcy4gQWxsIHlvdSBuZWVkIHRvIGRvIGlzIGNsaWNrIHRoZSBidXR0b24g
YmVsb3cgKGl0IG9ubHkgdGFrZXMgYSBmZXcgc2Vjb25kcykuIAEwAQEBAQ–
X-YMailISG: ppydfjcWLDsMsEU_bMcynMR0SRdKGjOp8uxYNLdozmLGkB3V
uUocES7M4udX6uE5wSgtuizytSk6ibdPESweWijFwK1NP21AgNz7a4z5GODA
o02HpM4IIMrngznYX_k9bMxPMfm.Rb0SKkaDpF.NwYEai7NLcz3LftrsfGJ.
xm3P.54XIkj9gSdD2fJICj5dZI6XWJ_X0X_WoU_2qHc8tcoym1wpE2IrB_BD
GSdDW8tCdJq5Xby1Hct.QSOAdbIFrRwK3cf1OIrpcsPu_I1cpqXmcTG6IUMd
2VwyWYKKCSfqd5s5tMmtWQAEzmS7r5fGUUSFyUzTzxIsCGOKghnY2RWbkSMP
9HTkmAp_eL1onMI1YOLSx3afPHkT5oMcRYtWssxqd9yGgteDXgTetak1zDEX
6gw3dFE8CCy2bsOxXZdnfmd1ws3YGwT4K0ntIwERNuXdRNkqVpvOWnV.VRm.
PR9asyUX3KeYsZUMyI142YOIJ01VyiLDRZBpdNIIGQ2Psr_z94f.3csQ4YeM
VlUm6QgQ7GM0hXlTOqB7K5QzEKOKQDxXQTWlD0Xro4g6ok5N2dMcgUh8Hh7c
2ZzOas7x71_4utxpHm9o9BoAXRWlb104.q06tEL8R.BkSVuWdLJ2ICx4_HeJ
b8sYASjcrEi5V6X7Lc4ZtPWdAYhhZYvbvo1HhtHdfBKZzAsoaPC_Gh3sx.Yr
8S1F1_pUZ37AUhtIXC4CRQ95txUsA6pwB059dNcoa4KlsgfCDsHkbEmY7b3P
otF_h0zVRicUej6IvGR_E3NGGut1yHplny4NiboFPBjncWdTtlb_mm5jE24I
zNATC0B.514RtxqqdoB8nOOpRvWSc5q89WcZyG1JK8otTqh2P.ZXP74yTMmI
_Fc4ojRMBevbwvh1vqwWhCFPyZ8E0BRMVbmQbJDzxuX9FnmpgCSVnW_yrk.R
o8ZYb6XxM9bg4bcuw_bS.lUP0D3Cz2a3QmNa5MsxbquY4U3oEEcPK8Y1Nwqw
K8RgVyYFDkFvsAKEzZEpjzvfC29o7Th7CgnsFvCPbh1L3nuahCd_vPxwXt_d
.AKq136aEb.yOGRs_jNgyMxbJHz4TYwvrpa25BfMR9NNhkKJidGYd8aEb5da
HKOpx80J3i4ni2l21qZR.5kFBbR.YbWDSrtc.fMsBcrf6eROs9Ql2iN4_Sgc
SpuH81SMN1AC4mYfPf9xf2DRZWOxgWJ2QmSuoeM4qdtE5z0D4U6IKOgWkNsp
7vc65WJ1FRb2CjozwOXQHTnM27Vc4SGIGUD3jhw-
X-Originating-IP: [72.167.238.124]
Authentication-Results: mta1403.mail.gq1.yahoo.com from=secureserver.net; domainkeys=neutral (no sig); from=secureserver.net; dkim=neutral (no sig)
Received: from 127.0.0.1 (EHLO p3plcorpmail004.prod.phx3.secureserver.net) (72.167.238.124)
by mta1403.mail.gq1.yahoo.com with SMTP; Thu, 02 Oct 2014 16:59:24 +0000
Received: from gdmailer05.dc1.corp.gd ([208.109.14.190])
by p3plcorpmail004.prod.phx3.secureserver.net with bizsmtp
id yGzQ1o0014626qw01GzQPe; Thu, 02 Oct 2014 09:59:24 -0700
Received: from mail pickup service by gdmailer05.dc1.corp.gd with Microsoft SMTPSVC;
Thu, 2 Oct 2014 09:59:24 -0700
X-MID: fbb6f845-ab07-4f4a-8600-4baa8e32fb61
X-10pl8ID: 2471
Thread-Topic: Action required for domain activation.
MIME-Version: 1.0
From: (email visible only to moderators and staff)
To: xxxx
Reply-To: (email visible only to moderators and staff)
Date: 2 Oct 2014 09:59:24 -0700
Subject: Action required for domain activation.
Content-Type: text/html; charset=utf-8
Content-Transfer-Encoding: base64
Message-ID: <(email visible only to moderators and staff)>
X-OriginalArrivalTime: 02 Oct 2014 16:59:24.0299 (UTC) FILETIME=[37E59DB0:01CFDE62]
Content-Length: 6423(email visible only to moderators and staff) Today at 5:59 PM
To
xxx
WordPress.com Please verify your email address.
Action required:
Please verify your email address.
Dear Emma xxx,We noticed that you need to verify your email address. All you need to do is click the button below (it only takes a few seconds). You won’t be asked to log in to your WordPress.com account – we’re simply verifying ownership of this email address.
Verify your email address
If you don’t verify your email address, we’re required to temporarily put your website on hold until verification is complete.*
Thanks for being a WordPress.com customer.
Sincerely,
WordPress.com
*ICANN, the Internet Corporation for Assigned Names and Numbers, requires that all domain registrars maintain correct and current WHOIS contact data for domain owners.Please do not reply to this email. Emails sent to this address will not be answered.
Copyright © 2014 WordPress.com. All rights reserved.
Someone is watching who you are emailing and then piggybacking.
Sort it out.
Regards
Emma -
I tagged this thread for Staff assistance. Please subscribe to it so you are notified when they respond.
-
Hi there,
@emma594-
Please note that email is legitimate. Please verify your email via the link provided. Sorry about the scare! We are working on making these emails look more like the emails you receive by us.
@sewingamy-
Did you have the same question as above? If not, let me know and we can continue our conversation via email.
Thank you!
-
Why would I need to verify my email address? It’s nonsense. I’ve had the same site and the same email address for years and I’m not doing it. I don’t need to do it. Why would I? If you think it’s from you, that’s your problem, but I’m not clicking on that email now or ever.
-
-
Why would I lose my domain name? It’s paid for.
I am not verifying my address to a suspicious-looking email. It’s as simple as that. If they want to send me a proper email, that actually comes from a wordpress address, maybe I’ll respond, but I’m not answering emails from strangers that tell me to click on a link and I am appalled that anyone would tell me I should. I have never done business with anyone called secureserver to my knowledge. Why are they even contacting me?
-
I have checked. There is nothing anywhere on my WordPress Dashboard or Account settings asking for an email verification.
But then, why would there be? This is utter nonsense.
If my account gets suspended, because you can’t be trusted to send out an email that doesn’t look like spam, I will take legal advice as I have paid good money for my blogs and if you refuse to provide the service you are taking money for, that’s theft.
-
The email verification would be in that email, not in your Dashboard. It looks like it has been verified. :)
Sorry about the confusion.
-
I have received another bright orange email demanding I verify my email address. I’m still not clicking on it. If you persist with this, I will take legal advice. You don’t need any email verification. My account has not changed. And if you did, you should send a proper WordPress email. I am NOT clicking on this nonsense. I could make something better, that at least LOOKS like it comes from WordPress. Why can’t you?
- The topic ‘Domain registration phishing e-mail’ is closed to new replies.
WordPress.com Forums 