Netregistry was made aware of an account login details phishing scam with the subject line "Please Update", currently being circulated, asking Netregistry customers to provide their Username and Password details for an upgrade.
Please DO NOT RESPOND to this email as this is not a legitimate email sent by us.
As with most phishing scams, in this case we believe customer information has been acquired by harvesting publically accessible whois databases. If you received the email in question, we recommend you urgently login to TheConsole to change your password.
For your security, you would never be required to provide your username and password details via email. It is important that you frequently change your password and keep your login details confidential at all times.
For any additional information or enquiries please don't hesitate to call our technical support team on 1800 78 80 82, or view the notification here.
Netregistry Pty Ltd
iTWire is in full agreement with the statements made and commends NetRegistry for its quick and fulsome warning.
The next page continues with the text of the phishing email and some suggestions.
Subject: Please Update
From: Netregistry Account Billing support <fjbortolim @ coras . com . br>
Date: Sun, 14 Mar 2010 23:18:16 +1100
Dear Netregistry Subscriber, We are currently verifying our subscribers Profile in order to increase the Efficiency of our mail features.
Due to the congestion in all Profile users and removal of all unused Account, Netregistry Will be shutting down all unused Profile,
To Join in the Recent Upgrade Taking Place at Netregistry ,You must Reply to this email by Confirming your account details below,
Failure to do this will immediately render your email address deactivated from our database.
Thanks for using Netregistry !
We are sorry for any inconvenience.
Netregistry Customer Care Team.
The poor grammar is, as usual, an obvious sign that this is a fake.
As an afterthought, iTWire does take minor exception to one small aspect of the message from NetRegistry. Although it is safe in this instance, it would be much better practice to describe the web address of the NetRegistry management console and encourage users to type the address in their own browser.