Hackers Attack Domain Registrar Namecheap; Flood of DHL and Metamask Phishing Emails Follow

On Sunday, February 12, 2023, hackers compromised the email account of the domain registrar Namecheap. Subsequently, a large number of people received phishing emails purporting to be from Metamask and DHL. These emails were sent from the Sendgrid email platform, a service used by Namecheap for marketing correspondence.

Namecheap Confirms Email Account Compromise and Disables Sendgrid Services

Some reports indicate that Namecheap was hacked on Sunday and the hackers used the company’s email account through the Sendgrid service. Namecheap CEO Richard Kirkendall confirmed compromise and stated that the firm had disabled Sendgrid’s services. “To be clear, the issue was related to the third party provider we use to send our newsletter,” Kirkendall tweeted. “None of our own systems or customer accounts have been hacked. I sent a follow-up email to all affected users. The domains that were referenced in the original phishing emails have also been disabled.”

According to users investigating the sent emails, the links led to a phishing campaign in an attempt to steal the user’s personal information. For example, a Metamask email resulted in a fake website attempting to force the user to enter their mnemonic recovery phrase. Metamask also tweeted about Namecheap emails and told recipients to ignore the messages. “Metamask does not collect KYC information and will never email you about your account,” the company tweeted. Wallet firm Web3 added:

NEVER enter your recovery passphrase on a website. If you receive an email today from Metamask, Namecheap, or anyone else, ignore it and don’t click on its links!

Phishing attacks have been common in recent years and hackers have used various methods to access people’s personal information. According to reports, the DHL phishing email aims to provide the user with an invoice in order to force the user to enter payment information in order to solve a fake problem. Once a user provides information such as a recovery mnemonic or other financial information, hackers can drain the account.

According to Beehive Cybersecurity, Namecheap team members immediately took action to resolve the issue. “We would like to vouch that when we ourselves notified Namecheap about this, they responded quickly and took it seriously.” – Beehive Cybersecurity tweeted. “This is the best game we would like to see from registrars.”

What measures could you take to protect yourself from such phishing attacks? Share your thoughts and strategies in the comments below.

Denial of responsibilityA: This article is for informational purposes only. This is not a direct offer or solicitation to buy or sell, or a recommendation or endorsement of any products, services or companies. does not provide investment, tax, legal or accounting advice. Neither the company nor the author is directly or indirectly liable for any damage or loss caused or alleged to be caused by the use of or reliance on any content, goods or services mentioned in this article.

Credit :

Back to top button

Adblock Detected

Please consider supporting us by disabling your ad blocker