Below is a fake email message that is being sent by cybercriminals to their potential victims with a link that goes to the fraudulent website: hxxp://cloudhelpdesk.website.
A Sample of a "Cloudflare Cloudhelpdesk" Phishing Scam
Subject: [Cloudflare]: New Ticket # 5068: onlinethreatalerts.com
Date: Wed 20/09/2017 10:41
From: CF Helpdesk
You have a new ticket from Cloudflare.
Cloudflare Trust & Safety
The link in the fake emails go to this fake Cloudflare website hxxps://cloudhelpdesk.website, which is owned by cybercriminals. What the cybercriminals have done is to create a copy of Cloudflare's legitimate website (www.cloudflare.com) and placed it at hxxps://cloudhelpdesk.website to trick their potential victims into believing the fake website is legitimate.
The cybercriminals then send out fake Helpdesk emails like the sample above with a link to the fake website. If potential victims visit the fake website, thinking it is a legitimate Cloudflare website, and attempt to sign-in, their usernames and passwords will be sent to the cybercriminals behind the scam.
Once the cybercriminals have gotten the stolen usernames and passwords, they will use it to gain access to their potential victims' Cloudflare accounts, hijack and use the accounts fraudulently.
Cloudflare users who have already been tricked by the fraudulent website are asked to change their passwords immediately. If they are unable to, they should contact Cloudflare for help immediately. Only use the contact information on Cloudflare's website at www.cloudflare.com, and never give out your password to anyone, not even a technical support representative.
Also, Cloudflare offers Two-Factor Authentication and encourages all users to take advantage of the feature for account security. This feature is another layer of security that prevents cybercriminals from gaining access to your account even if they have stolen your username and password. Click here to learn how to enable Two-Factor Authentication on your account.