Krystal Network Status

Clear communication throughout service affecting events

Phishing Emails - Disk Space Warnings and Domain Expiration (Cancelling Domains) 4 weeks ago

We are currently aware of a number of phishing emails that have been sent out to some of our customers.

  1. A Krystal branded notification stating domains have been cancelled/expired. The link in the email directs to a page requesting payment details for the domain renewal.
  2. A cPanel disk space warning email. The phishing example in this instance is a spoof cPanel login page looking for the username / password.

We have seen emails originating from the addresses and but there may be other addresses that have been used or will be used in the future. Needless to say, none of these emails have originated from us.

These emails were not sent out by Krystal and should be deleted if received. Please do not enter your personal details or credit card information using the link.

The initial batch of emails, which use a template similar to legitimate Krystal emails, appears to have included a link that redirected to an invalid page on our own website. A subsequent email contains a link to a spoofed Krystal branded login page hosted on a 3rd party domain. Once entering details into the login fields, the user is requested for personal information including credit card details.

Legitimate emails from Krystal will always have a From address on our own domain ( and will include your name at the start. If you are not expecting an email from us, we recommend you always check for both of these things.

We are continuing to monitor the situation but our investigations, so far, suggest that domains using our nameservers are being targeted. The messages we have seen are sent to info@ rather than any specific address linked to your accounts with us.

We have no evidence to suggest there has been any compromise of any of our systems or databases.

If you do receive an email of this nature, please do feel free to get in touch with us to verify its legitimacy. You can forward suspected phishing emails to which will help us to provide appropriate advice to customers.

We do apologise for any concern this may have caused.

Back to Status Page