Having been a Sedo account holder for a decade, I still use their services to acquire domain names listed on the Sedo marketplace.
That being said, I am no longer selling domains on Sedo, due to a strategic decision to move my domains over to Domain Name Sales.
Today, I received an email from Sedo asking me to confirm my email address, in order to submit an offer. I have not made any offers recently, and I have not changed my email with Sedo either.
Concerned that this might be a phishing attempt, the email addressed me by name, and the link provided – which contained a hashed signature – pointed to Sedo.com.
Thank you for becoming a Sedo member!
In order to submit your offer for you must first verify that the email you provided is a valid email address.
**********************************
Email Confirmation Code: [redacted]
**********************************Please type this Email Confirmation Code onto the Account Confirmation page that prompted you to this email.
This code will expire soon, so please confirm your account as soon as possible.
If you’re not currently on the Account Confirmation page, please click the link below or copy and paste it into your browser window:
http://sedo.com/confirm_account.php?challenge=[redacted]&language=usIf you have additional questions please visit support.sedo.com
Best Regards,
Your Sedo Team
The email headers show that the email originated from a German company called FHe3 that apparently is being used by Sedo to mass-email account holders; this looks like a glitch, but one could not be too careful when receiving such emails.
Always visit the web site in question by typing in the URL yourself and not by clicking on a link prompting you to log into your account.
Today I’ve got 5 or 6 emails from GoDaddy, all at the same time, about the renewals of some of my domains … always referring to the same domains … maybe there is a little glitch in their system … 😀
I received the same exact email from Sedo. I have not made any offers on Sedo in many many months, and have not logged into my Sedo account for several months, so something is wrong with this email. I did not confirm the account like they requested since I have no reason to do so.
Andrea – Sounds like it 😀
Eric – At least one other person confirmed the same. Thanks!
Thank you for this I was up all night and had not slept thought I was going crazy, I got the same email and was like what the heck ?
Some folks in NamePros got the same thing:
https://www.namepros.com/warnings-and-alerts/821378-sedo-e-mail-real-or-fraud.html
Sedo is the king of flaws and bugs. And the home of deadbeat buyers. Reasons enough not to work with them. Let’s hope that some other aftermarket players will step up and that this bunch of amateurs will disappear. The sooner the better!
So here’s what happened, from Sedo:
+++
We wish to inform you that on Saturday, 12th April, the Sedo website was compromised by an unknown intruder through a previously unknown security loophole. This resulted in an unauthorized email with the subject “Confirm your Sedo Account” being sent to a small number of our customers.
Our immediate investigation into the matter has shown that your email address was unfortunately one of those affected. That means that the intruder has got your email address only. NO other data has been compromised, i.e. no passwords or other account information was obtained. The security vulnerability was closed as soon as it was detected and any further unauthorized access was successfully prevented. This means that your Sedo account is safe, and you do not need to take any action to safeguard data stored in your account. Clicking on the link in the unauthorized email has no adverse effects.
If you have any questions we will be happy to help you. Please contact your account manager or visit our customer support center at http://support.sedo.com.
We apologize for any inconvenience this issue may has caused.
Best regards,
Your Sedo Team
Sedo.com :: 161 First Street :: Cambridge, MA 02142
tel 617.499.7229:: fax 617.499.7219
http://www.sedo.com :: http://support.sedo.com
Board of Management: Tobias Flaitz, Axel Hamann
Having dealt with Sedo for many years, yea – its probably a glitch.