We want to inform you about a recent phishing campaign targeting the Hostico website and brand. The impersonations are carried out through fake emails attempting to obtain personal information from users, with the ultimate goal of stealing banking data and performing unauthorized operations on accounts.
How do these attacks occur?
Attackers randomly select domain names and send emails to generic addresses (office@, home@, contact@, and others) with the intent of deceiving recipients and obtaining confidential information. These messages contain links to sites that mimic the hostico.ro login page along with the presentation of fake payment pages. The messages contain notifications about domain expiration with subjects such as "Domännamnets giltighetstid löper ut".
What do you need to know?
- Fraudulent emails are NOT sent by us. Official communications are sent exclusively to email addresses associated with client accounts or their related sub-contacts and will only be sent from official Hostico email addresses: office@hostico.ro, comercial@hostico.ro, tehnic@hostico.ro.
- Any online payment must be made through the client area (Financial section) or by using the link provided in the payment notification email, strictly using our payment processor.
What to do if you have clicked on a link or disclosed account or card information:
- Immediately change your Hostico client account password. Ensure you use a strong and unique password, different from those previously used.
- Notify the issuing bank of your card if you have provided sensitive information, to request card blocking and prevent further potential fraud.
- Monitor your accounts closely. Regularly check your account statements and card activity to identify any suspicious or unauthorized transactions.
- Enable two-factor authentication (2FA) on your Hostico client account to add an extra layer of security.
Security recommendations in case of a phishing attack:
- Check the source of the email. Make sure the message comes from an official source and verify the sender's address.
- Do not click on links or open documents in suspicious emails. If in doubt, contact us directly at office@hostico.ro for confirmation.
- Do not respond directly to messages. Responding to suspicious addresses can compromise personal information.
- Verify URLs before clicking. Hover over links without clicking to see the real URL. Ensure it matches hostico.ro.
If you encounter issues or have questions regarding the security of your account, do not hesitate to contact us through the communication channels available on our contact page.