How Unity is setting us up to be phished ... or maybe I was phished

My Reply:

1 Like

For context the email contains links to a tracking site (appspot.com) rather than to Unity itself. I didnā€™t post the links in case this actually is a phishing atttempt.

The ā€˜appspot(dot)comā€™ domain has been flagged as spam on Microsoft Answers.

The registrar is MarkMonitor Inc which uses Google name servers. Probably worth submitting an abuse reportā€¦ whois

Definitely looks dodgy, although Unity sales requests are always so dodgy it is difficult to tell.

8 Likes

The follow up email seems to suggest this is real:

(I will double check with support@unity3d.com)

1 Like

This is a legit email. Thanks all!

1 Like

Iā€™ve more than once now seen Unity staff make statements like this, which is also a security issue.

Now, any spammer can come and copy the email contents posted above, stick it in their spam mails, and if anyone Googles it theyā€™ll find staff saying itā€™s legit.

You should really be telling people how they can check if itā€™s legit. For example, if it is digitally signed then what signature should they check for?.

1 Like