Home > Blog > Scam Alerts > The Domain Disk Quota Scam

Beware the Disk Quota Scam: How to Protect Your Website from Phishing Attacks

A person wearing a hooded jacket is silhouetted against a large computer screen. The screen displays a keyhole symbol in the center with a cloudy sky visible through it. Surrounding the keyhole are lines of code and digital data radiating outward. The scene is illuminated with a blue glow, emphasizing the technological and cyber-centric theme.
A scammer patiently waits to receive login credentials from unsuspecting website owners.

I recently received an email claiming that my website was reaching its storage capacity. At first glance, it looked legitimate because it came from my own domain and mentioned cPanel, which is related to my website hosting. It caught me off guard, and I clicked the link. Fortunately, I have an unsafe website blocker on my browser, which warned me that it was an unsafe link.

At first, it was confusing because I know my website is safe, but then the scam red flags started to appear. I went back and looked more carefully at the links, and they didn’t seem right, so I did some digging. It turns out this is a variation of the “email storage capacity” scam that’s been circulating. There are many variations of these storage capacity scams, including ones for iCloud, Gmail, Dropbox, and more. Website owners are also being targeted by these storage capacity scams.

The "Your Domain Has Reached Its Disk Quota" Scam

Here’s an example of the email I received claiming my domain has reached its disk quota:

Disk quota notification for “yourdomain.com”.

The domain “yourdomain.com” has reached their disk quota.

The account currently uses 96.51% of its disk capacity.

You should follow the link bellow to auto extend your disk capacity for free as soon as possible in order to prevent the loss of any files and future emails. Use the Disk Capacity tool at (link removed).

The system generated this notice on 2024/05/31 17:15:57.

You can disable the “User Disk Usage Warning” type of notification through the cPanel interface: (link removed).

Do not reply to this automated message.

What is the Website Disk Quota or Storage Capacity Scam About?

These emails are fake and intended for phishing—they are not sent by cPanel on your server. They are cleverly disguised to look like they come from your own server, aiming to deceive you. The goal is to trick you into visiting a fake website and entering your cPanel login credentials. If you fall for this and provide your information, the attackers will steal your cPanel login credentials. Given the many variations of the storage capacity or disk quota scam, other website platforms may also be targeted.

How to Protect Yourself and Your Website

To protect yourself against the cPanel storage capacity or disk quota scam, consider the following steps:

  1. Verify the Sender: Always check the sender’s email address carefully. Legitimate emails from cPanel (or your own domain) will come from official domains, not unfamiliar or suspicious ones. Checking email headers is a good idea as well. It will give you the domain name of the sender and their IP address which you can block from accessing your site.

  2. Look for Red Flags: Be wary of emails with urgent language, poor grammar, or unexpected attachments and links. Here

  3. Hover Over Links: Before clicking on any link, hover your mouse over it to see the actual URL. Ensure it matches the legitimate website and doesn’t contain any misspellings or odd characters.

  4. Enable Two-Factor Authentication (2FA): Adding an extra layer of security to your cPanel account makes it much harder for attackers to gain access, even if they have your login credentials.

  5. Use Security Software: Install and maintain updated antivirus and anti-malware software including a firewall to detect and block phishing attempts.

  6. Keep Software Updated: Ensure your server and all related software are up-to-date with the latest security patches.

  7. Educate Yourself and Your Team: Regularly train yourself and your team to recognize phishing attempts and understand best practices for email security.

  8. Contact Support: If you’re unsure about an email’s legitimacy, contact your server’s support team directly before taking any action.

Stay Vigilant and Secure Your Credentials

Safeguarding your cPanel login credentials from phishing scams is essential for maintaining the security of your server. By staying vigilant, verifying email authenticity, using two-factor authentication, and keeping your software up-to-date, you can significantly reduce the risk of falling victim to these scams. Educating yourself and your team on recognizing phishing attempts is equally important. When in doubt, always reach out to your server’s support team for confirmation. By taking these precautions, you can ensure the protection of your sensitive information and keep your server secure. Stay proactive and stay safe.

More from Art and Design By Teresa Cowley
A woman stands confidently against a background of vertical black and white stripes. She is wearing a stylish outfit consisting of an orange turtleneck sweater, red pants, and a black and white striped trench coat. The blazer has wide lapels and gold buttons. Her hair is styled in an elegant updo, and she has a poised expression. The combination of her outfit and the background creates a striking visual contrast.
Trendy Prints & Patterns for Fall/Winter 2024/2025
Unveil the hottest Fall/Winter 2024/2025 print and pattern trends! From bold geometrics to sleek stripes...
A surrealist landscape in mostly purple colours.
Revealing My True Colors: Favourite Colour Purple
Dive into the regal world of purple, one of my favourite hues, and uncover what it reveals about me and...
An AI art experiment representing art in vacation mode
Tech Glitches: A Brief Pause in Our Journey
Join me as I share the tech hiccups that peppered my journey while crafting this week's blog post. From...

Digital artist and graphic designer, Teresa Cowley

My name is Teresa Cowley, and I'm a digital artist and graphic designer from Vancouver Island, Canada. I focus on abstract and fantasy art as well as digital collage, and like to utilize AI art tools as part of my design process to create new, innovative pieces of art. I strive to create new, unique designs that tell imaginative stories, and I am eager to push the boundaries of what can be expressed with art and technology.

0 Comments

Leave a Reply

Avatar placeholder

Your email address will not be published. Required fields are marked *