Hi all. Posting this for my fellow writers who regard their blogs as PRECIOUS. I half-fell for a phishing scam right now.
I got an email from “WordPress” (wasn’t WordPress, but looked extremely legitimate) saying my domain needed to be renewed. Didn’t think anything of it, as I coincidentally happened to just order a new debit card, so it seemed plausible that my payment failed.

I went to the website, entered my login details, and was about to enter my card details when I realized that I wasn’t on the WordPress website, but was instead on a site called maxbarkod.com.

I logged into WordPress.com and saw that I wasn’t due for a renewal until August of 2026. I went back to maxbarkod.com and attempted to log in with an incorrect password and it still let me in.

Fortunately, I didn’t enter my card details, but I did enter my password. I immediately changed my password and enabled 2FA.

This almost got me. I could have been at risk of losing all of my poetry.

The email sender was domains.notice@clipeo.be — please be on the lookout, protect your website, and verify all such emails (and report if you receive an email from them or any other phishers!).