HEADS UP - Latest scam - cPanel Phishing
I just ran across this article. I'll post part of it and leave the rest for you to read.
Article Link HereWebmasters targeted in cPanel look-alike phish
"Due to the system maintenance, we kindly ask you to take a few minutes to confirm your FTP details," the emails state.
The emails are sent to customers of some of the world's most widely used webhosts, including GoDaddy, Hostgator, Yahoo!, and 50Webs. Although the subject lines vary, they all purport to come from the hosting service. In all, admins from at least 90 different webhosts are being targeted.
Those who take the bait are led to a website formatted to look like a page from cPanel, the widely used website administration program. Once a website's address and FTP credentials are entered, users are directed to their host's login page.
The bottom line here is to think twice and act cautiously. This is somewhat is line with banking scams. If you receive anything like this, and are in doubt, either post the question here in this thread, or contact your ISP - who is hopefully Bluehost - directly.
Also, it is extremely good practice to only access your cPanel or your FTP site using secure methods (SFTP, SSH, HTTPS, etc). It's easy to build a bookmark to your cPanel using https, and use that for connecting rather than plain http which can be intercepted and read in plain text. If you use the secure encrypted connection method, the hackers will just move on to an easier target.
You can create this shortcut from cPanel itself, or use the following format using the correct box number.
You'll find the cPanel method up at the top under Preferences | Shortcuts.
https://box999.bluehost.com:2083/
