False password change e-mails (Phishing attack against Community Forum users)

schoen · 2017-04-07 21:04:54 UTC

There is a phishing attack happening now in which people are falsely being told to change their passwords for this forum, using links to “ietsencrypt.org” (letter “i”) which is written with a capital I to look visually like “letsencrypt.org”.

If you followed such a link to the false forum site and “changed your password”, please log in directly to this forum site and change your password again. If you received such a false password-change e-mail message, please ignore it.

schoen · 2017-04-07 21:09:56 UTC

jsha · 2017-04-07 21:15:44 UTC

jsha · 2017-04-07 21:20:48 UTC

Good eyes, Seth! This is very good advice to be careful about unexpected password reset emails, and check other sources of information. This particular phishing attempt was made by our hired pentesters, so probably only staff and moderators got the email.

schoen · 2017-05-07 21:30:33 UTC

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.