Wikipedia:Phishing emails
From Wikipedia the free encyclopedia
 | This page is currently inactive and is retained for historical reference. Either the page is no longer relevant or consensus on its purpose has become unclear. To revive discussion, seek broader input via a forum such as the village pump. |
 | Do not react to suspicious emails claiming to be from Wikipedia. They may link to harmful websites and expose you to spam. |
As of July 2010, many people received emails that looked similar to the following:
Someone from the IP address xxx.xxx.xxx.xxx has registered the account "xxxxxxxx" with this email address on the English Wikipedia.
To confirm that this user account really does belong to you and to activate email features on Wikipedia, please open this URL in your browser:
http://en.wikipedia.org/wiki/Special:ConfirmEmail/xxxxxxxx
If you did not recently register for Wikipedia (or if you registered with a different email address), click the following link to cancel the confirmation:
http://en.wikipedia.org/wiki/Special:Invalidateemail/xxxxxxx
This confirmation email will automatically expire at Thu, 1 Jul 2010 15:06:30 +0100
~Wikipedia, the free encyclopedia
http://en.wikipedia.org
These emails are not from Wikipedia. The links they contain, despite their appearance, lead to third-party websites (see Link manipulation for an explanation of this technique). It appears that these mails constitute an attempt at phishing by unknown parties.
If you receive such a message, we advise you to delete it. Under no circumstances should you click the links in these emails, because by doing so you may open a website that may spread malware, and thereby harm your computer or access private information. Clicking the links will also inform the sender that your email account is active, which will make it a target for more spam and phishing attacks.
Please do not forward these messages to Wikipedia, because we are already aware of this problem and can't do anything about it.
These emails are impersonations on legitimate emails that Wikipedia's servers send out automatically when someone registers an email address with their new account. If you received such an email immediately after registering a Wikipedia account (or linking an email address with that account through your Wikipedia preferences), then it is legitimate; otherwise, delete it.