With the recent de-accreditation of Estdomains many phishers and malware publisher are looking for a new home. To accomplish this they have begun sending notices to users about domain registrations expiring or domains being deleted.

Network Solution and ENom have been heavily targeted by these scams.  Enough that NetSol has alerted members to be on the look out for these emails and to protect their accounts.

Here is their recent alert to clients.

Dear Valued Network Solutions(R) Customer:

We’ve recently become aware of a phishing scam targeting domain name customers of a small number of registrars including Network Solutions(R). We wanted to alert you of this situation. Phishing is the practice of luring unsuspecting Internet users to a fake Web site by using an authentic-looking e-mail in an attempt to steal passwords, account information or other sensitive data.

At this time, we know that fraudulent e-mails are being sent to some domain name customers, regardless who the registrar of record is, which include links to sites that look like networksolutions.com or other domain provider sites; however they are fake Web sites. These e-mails are attempting to capture login information. For more information and tips on identifying phishing scams, please visit our blog at blog.networksolutions.com.

If you believe you have received an e-mail of this type, have clicked on the link, and provided your login information, we recommend the following for security purposes:

1. Log in to your account from the Network Solutions Web site.
2. Review your account information for accuracy 

3. Choose a new password security question and answer 
4. Change your password
Thank you for your attention to this message.

Network Solutions(R) Customer Support

I suggest reviewing our previous post “Common Craft: Phishing Scams in Plain English“.

Protect yourself – click smart, use a bookmark or manually enter the domain when your doubting the source of these messages.  Most organizations NEVER ask for personal information via email, and I’d suspect any that did.