Comments on: Don’t Be Fooled! Recent Phishing Attacks Targeting cPanel Users https://www.fastcomet.com/blog/phishing-campaign-targets-cpanel-users FastComet Web Hosting Blog Tue, 11 Jun 2024 13:13:54 +0000 hourly 1 https://wordpress.org/?v=6.9 By: Konstantin https://www.fastcomet.com/blog/phishing-campaign-targets-cpanel-users#comment-948 Tue, 11 Jun 2024 13:13:54 +0000 https://www.fastcomet.com/blog/?p=6842#comment-948 In reply to Cue.

Hello Cue!

Thank you for the question. Allow us to explain.

The email you received is an attempt at phishing, as you have likely read in our blog post. However, what you are seeing (the email address and its source) is an act of spoofing. Spoofing an email address will do precisely what you are experiencing: the email will look legitimate and sent from a trusted source, when in reality it is not.

Typically an email can get spoofed like that if you have an unprotected form on your website, or if there is an email address in plain view on a page. If that is the case then we recommend securing your form via CAPTCHA and removing any plainly visible email addresses.

We checked to see if your website itself was hosted with us (despite your domain being with Bluehost as you mentioned), since we would have been able to help you with this. However, as that is not the case we cannot provide you with more in-depth assistance.

]]> By: Cue https://www.fastcomet.com/blog/phishing-campaign-targets-cpanel-users#comment-942 Tue, 04 Jun 2024 15:46:57 +0000 https://www.fastcomet.com/blog/?p=6842#comment-942 I got this email just as described. However what keeps me puzzled is that after inspecting the raw source of the email. the sender is an address of my own domain at bluehost. I never created this email address, and yet it is the source address. It is also confirmed to be delivered from a bluehost server.
How can this happen? Bluehost has not offered any explanation about how can this happen.

]]>