Security Market Segment LS
Monday, 15 March 2010 17:07

NetRegistry proactive response to phishing attack

By

In response to a phishing attack against its customers, NetRegistry has issued a warning reminding them that they would never ask for a password.


The full text of the warning is as follows:

Important Notification

Hello David,

Netregistry was made aware of an account login details phishing scam with the subject line "Please Update", currently being circulated, asking Netregistry customers to provide their Username and Password details for an upgrade.

Please DO NOT RESPOND to this email as this is not a legitimate email sent by us.

As with most phishing scams, in this case we believe customer information has been acquired by harvesting publically accessible whois databases. If you received the email in question, we recommend you urgently login to TheConsole to change your password.

For your security, you would never be required to provide your username and password details via email. It is important that you frequently change your password and keep your login details confidential at all times.

For any additional information or enquiries please don't hesitate to call our technical support team on 1800 78 80 82, or view the notification here.

Kind Regards,

Netregistry Pty Ltd

iTWire is in full agreement with the statements made and commends NetRegistry for its quick and fulsome warning.

The next page continues with the text of the phishing email and some suggestions.


Like many such phishing attacks, this one claims to be from NetRegistry and encourages users to reply with their username and password in order to comfirm the account is still active.

Subject: Please Update
From: Netregistry Account Billing support <
fjbortolim @ coras . com . br>
Date: Sun, 14 Mar 2010 23:18:16 +1100

Dear Netregistry  Subscriber, We are currently verifying our subscribers Profile in order to increase the Efficiency of our mail features.

Due to the congestion in all Profile users and removal of all unused Account, Netregistry  Will be shutting down all unused Profile,

To Join in the Recent Upgrade Taking Place at Netregistry ,You must Reply to this email by Confirming your account details below,

UserName:

Password:

Failure to do this will immediately render your email address deactivated from our database.

Thanks for using Netregistry !

We are sorry for any inconvenience.

Regards,
Netregistry  Customer Care Team.

The poor grammar is, as usual, an obvious sign that this is a fake.

As an afterthought, iTWire does take minor exception to one small aspect of the message from NetRegistry.  Although it is safe in this instance, it would be much better practice to describe the web address of the NetRegistry management console and encourage users to type the address in their own browser.

LEARN HOW TO REDUCE YOUR RISK OF A CYBER ATTACK

Australia is a cyber espionage hot spot.

As we automate, script and move to the cloud, more and more businesses are reliant on infrastructure that has high potential to be exposed to risk.

It only takes one awry email to expose an accounts payable process, and for cyber attackers to cost a business thousands of dollars.

In the free white paper ‘6 steps to improve your Business Cyber Security’ you will learn some simple steps you should be taking to prevent devastating malicious cyber attacks from destroying your business.

Cyber security can no longer be ignored, in this white paper you will learn:

· How does business security get breached?
· What can it cost to get it wrong?
· 6 actionable tips

DOWNLOAD NOW!

ADVERTISE ON ITWIRE NEWS SITE & NEWSLETTER

iTWire can help you promote your company, services, and products.

Get more LEADS & MORE SALES

Advertise on the iTWire News Site / Website

Advertise in the iTWire UPDATE / Newsletter

Promote your message via iTWire Sponsored Content/News

Guest Opinion for Home Page exposure

Contact Andrew on 0412 390 000 or email [email protected]

OR CLICK HERE!

VENDOR NEWS & EVENTS

REVIEWS

Recent Comments