Moniker Password Reset Email – The Good And The Bad

Ok, so you’ve spotted some suspicious activity on your network. What do you do?

The sensible response would be to alert your customers immediately via as many channels as possible with email probably being the best choice.

Thankfully, thats exactly what domain registrar Moniker have done with the following email –

Moniker’s Operations & Security team has discovered and blocked suspicious activity on the Moniker network that appears to have been a coordinated attempt to access a number of Moniker user accounts.

As a precaution to protect your domains, we have decided to implement a system-wide password reset. Please read the below instructions to create a new password. You will not be able to access your Moniker account until these steps are taken.

In our security investigation, we have found no evidence that domains have been lost or transferred out. We also have no evidence that any confidential or credit card information has been compromised.

While our password encryption measures are robust, we are taking additional steps to ensure that your personal data and domains remain secure. This means that, to be absolutely sure of the security of your account, we are requiring all users to reset their Moniker account passwords.
Please reset your password by following the directions below.

1) Go to Moniker.com and click the “Sign In” button in the upper right hand corner of the home page. Select the “Forgot Your Password” link.

2) You will be directed to a page to “Retrieve” your Moniker Account Password. When prompted, enter your account number and click “Submit”.

3) You will be directed to a page that {displays the message below}. You will receive an email from Moniker. Please follow the instructions in this email to complete the password reset.

As recent events with other large services have demonstrated, this type of activity is becoming more common. We take our responsibility to keep your domains and personal data safe very seriously, and we’re constantly enhancing the security of our service infrastructure to protect our customers. We feel it is also important to be clear that we view this as attempted illegal activity and have taken steps to report this to the appropriate authorities.

There are also several important steps that you can take to ensure that your data on any website, including Moniker, is secure:
•    Avoid using simple passwords based on dictionary words
•    Never use the same password on multiple sites or services
•    Never click on ‘reset password’ requests in emails that you did not request

Thank you for taking the time to read this email. We sincerely apologize for the inconvenience of having to change your password, but, ultimately, we believe this simple step will result in a more secure experience. If you have any questions, please do not hesitate to contact Moniker Support. Our support team is standing by to assist at 800-688-6311 or outside the U.S. and Canada: 954-607-1294.

Drake Harvey
Chief Operations Officer
Moniker.com

Thats very responsible and exactly what moniker customers would expect – a prompt response and guidance on what to do next. Thumbs up to Moniker for that.

However.

Take a close look at the image below –

Moniker

As you can see, the email says it came from news@moniker.com but via b.lt02.net (and the couple of links to moniker.com that are in this email also point to b.lt02.net).

And thats a potential problem because you are all too aware that you shouldn’t trust unknown links in emails right? So, it is highly possible that many recipients of this email may see that and not trust the message, especially as it relates to a security concern which is a topic that email phishers do like to use themselves.

Whoops!

In this case the email is actually genuine of course – lt02.net is associated with VertexInternet (vertex.net) who have used an email marketing system called Listrak to send out this particular email.

So, Moniker, thanks for the email but next time how about you take a little extra time in notifying your customers and deliver the message in a way that doesn’t itself look suspicious?

About Lee Munson

Lee's non-technical background allows him to write about internet security in a clear way that is understandable to both IT professionals and people just like you who need simple answers to your security questions.

Speak Your Mind

*