Namecheap is warning its customers of high email phishing attacks originating from ncmail[.]com domain that targets is customers.
Namecheap email phishing attacks
Namecheap published a post on 20th January 2022 indicating that attackers are sending emails with malicious links in high numbers to Namecheap customers. If not well analyzed, you may be fooled to think that the email came from the Namecheap Support team.
The attackers are impersonating the Namecheap support team by using the email address, support@ncmail[.]com to send emails to customers asking them to update their billing information by clicking on the link contained in the email.
Once you click on the link, it takes you to a page that looks like Namecheap’s account billing information page. You will then be misled into entering your card information granting the attackers an opportunity to withdraw money from your account.
Other similar scams that you should watch out are emails telling you that your hosting storage space has reached its limit or your account might be suspended.
Namecheap is asking its customer to only interact with emails sent from the official Namecheap domain firstname.lastname@example.org.
You can report any suspicious email to email@example.com.