New GoDaddy phishing email and website using a domain registered at GoDaddy!

I received a scam email today that tries to trick domain name and website owners into going to some phishing website to supposedly agree to the new GoDaddy Universal Terms of Service Agreement.

Here is the email:

From: GoDaddy <ssl4194noreply@wrdsb.ca>
To: ****************************
Subject: Universal Terms of Service Agreement have expired.
Universal Terms of Service Agreement


One or more items in our Universal Terms of Service Agreement have expired. Agree the updated Terms today to avoid any disruption of services.
Dear user, some elements of our Universal Terms of Service Agreement (ToS) have been modified for better service use. But don’t worry, you can still use your services after you read and agree the new ToS.

Continue

Copyright © 1999-2017 GoDaddy Operating Company, LLC. 14455 N. Hayden Rd, Ste. 219, Scottsdale, AZ 85260. All rights reserved.

The email seems to be coming from a .ca email address but in reality it is coming from bwucqncc@frontierproductions.jp.

The link in the email takes you to a GoDaddy phishing website that is using a .info domain name. This is the link: https://sso-godaddy-tos.fsa-centraldistrict.info/sign.in.html


The phishing website above is very similar to the real GoDaddy.com website.

Source

Thanks for sharing this! That email looks like one off the better ones I've seen; I can see people falling for it. A new blackhat scam seems to pop up every other day. It's madness.