I received a troubling email this morning from a friend of mine. He ran into a problem when he tried to log in to etenders this morning (etenders is an Irish government website where you can find tender notices on government and public sector procurement).
I went to log on to the etenders website this morning. I typed in www.etenders.ie and didn’t look carefully as I then entered my username and password. Nothing happened. I quickly realised it wasn’t the official site (www.etenders.gov.ie). So now “they” had my username and password. “They” are a company called Segaps Limited, registered no. 410457 – in Clare. Why are they doing this, what happens to my username and password (quickly changed and not one I use anywhere else) and how does the government allow a site like this to exist? Why does the .ie domain registry allow it to be registered? Why do webhost.ie host it?
provide a range of services that complement your existing business model.
Now I have no idea why someone would want to register etenders.ie (or how they would be allowed to in what is supposed to be a managed tld!) but there very well may be a legitimate reason.
Does anyone know anything about etenders.ie, who is behind it, why it was registered or what is happening to the usernames and passwords being accidentally filled in on their submission form?
Is it possible that etenders.ie is a legitimate site who themselves have been hacked/phished by someone trying to harvest real etenders site logons?