Namecheap email system hacked to send phishing emails
A domain name registrar known for its low prices, Namecheap has its mail system hacked. Some users found that they received a phishing email from email@example.com. Fortunately, the DHL phishing email pretends to be a bill for a delivery fee required to complete the delivery of a package, rather than a Namecheap domain name registration, renewal, or account password change.
So at least the user’s domain name is safe, but if you, unfortunately, pay the so-called courier fee or provide the bank card information in the DHL express, it is recommended to contact the bank immediately to freeze the card.
Twitter user @Lemogbenga who first discovered this problem got a response from @Namecheap on Twitter, and the investigation found that the Namecheap system itself is no problem.
Attention @Namecheap users: be wary of suspicious emails claiming to be from DHL. #phishing scams are rampant and it's crucial to keep your personal information safe. Time for #Namecheap to enhance their security measures. #cybersecurity #emailscams pic.twitter.com/kTPvY90b7d
— Gbenga (@lemogbenga) February 12, 2023
There is a problem with the third-party mail system used by Namecheap. Namecheap itself does not send these emails. The provider that provides mail delivery for Namecheap is pushing emails using the @Namecheap.com domain to users for unknown reasons.