Namecheap admits 'unauthorized emails' pwning its customers

2023-02-13 16:13

Domain registrar Namecheap blamed a "Third-party provider" that sends its newsletters after customers complained of receiving phishing emails from Namecheap's system.

More than one customer noted that the emails - which purported to be from DHL and crypto-asset wallet provider MetaMask - were digitally signed with DKIM and received at distinct emails they'd assigned solely for comms with Namecheap.

Twilio SendGrid told The Register it "Invests heavily in technology and people focused on combating fraudulent and illegal communications", adding it was "Aware of the situation regarding the use of our platform to launch phishing email and our fraud, compliance and cyber security teams are engaged in the matter."

We have evidence that the upstream system we use for sending emails is involved in the mailing of unsolicited emails to our clients.

As a result, some unauthorized emails might have been received by you.

The domain registrar added that it had "Stopped all the emails and contacted our upstream provider to resolve the issue. At the same time, we are also investigating the issue from our side."

News URL

https://go.theregister.com/feed/www.theregister.com/2023/02/13/namecheap/

#email