PCMag editors select and review products independently. If you buy through affiliate links, we may earn commissions, which help support our testing.

PCMag UK

Scammers Target Starlink Users With Elaborate Phishing Scheme

Starlink users receive legitimate-looking emails that ask them to re-enter personal details to fix 'incorrect data we had on file.' But it's just a scam to steal your info.

Michael Kan
 & Michael Kan Principal Reporter

Our team tests, rates, and reviews more than 1,500 products each year to help you make better buying decisions and get more from technology.

Our Expert
LOOK INSIDE PC LABS HOW WE TEST
65 EXPERTS
43 YEARS
41,500+ REVIEWS
(Credit: Fake Starlink login page)

Scammers are going out of their way to target Starlink subscribers with fake email and login pages that try to trick people into providing their account passwords, credit card details, and even Social Security numbers. 

On Wednesday, a Reddit user alerted Starlink customers about the phishing scam, which arrives as an email from "Starlink Team 2024." The fake email tells unsuspecting users that their "registered payment method has been deleted due to incorrect data we had on file" and requests that they re-enter their information "in order to avoid late payment fees."

(Credit: Reddit user I_dont_know_you_pick)

The malicious email then directs users to click a link to log into their Starlink accounts. But in reality, the link will send the victims to a look-alike but malicious Starlink login portal. 

To dupe users, the malicious Starlink login site contains links that’ll forward you to official Starlink pages from SpaceX. But the portal’s main component, the email and password login, will send you to another hacker-controlled page—this one designed to collect your most sensitive personal information under the guise of verifying your payment information. 

(Credit: Malicious Starlink page)

The final stage of the attack asks the user to provide details to their payment card as well as date of birth, Social Security number, mother's maiden name, and driver's license number. "This is a mandatory security measure due to a change in our system,” the phishing attack claims. 

Recommended by Our Editors

Google Will Soon Spot Fake Calls on Supported Android Phones
Google Will Soon Spot Fake Calls on Supported Android Phones
Report Cites Misinformation As Key Threat to Election Security, Doesn't Name the Biggest Offenders
Report Cites Misinformation As Key Threat to Election Security, Doesn't Name the Biggest Offenders
Meta's AI Chatbot Allegedly Helped Hackers Hijack Instagram Accounts
Meta's AI Chatbot Allegedly Helped Hackers Hijack Instagram Accounts
(Credit: Malicious Starlink page)

If a victim falls for the trick, the malicious site will accept all the information and then display a new page, saying: “Your payment information is now VERIFIED. No charge until your next billing date. Thank you for updated information. In a few moments, you will be redirected to starlink.com.” Hence, victims may come away thinking they went through a normal Starlink payment process without realizing they gave up their most sensitive personal information to an elaborate hacking scheme. In the wrong hands, the details can be exploited to make fraudulent credit card charges and conduct other identity theft schemes against the victim.

The good news is that the scam can be easy to detect if you look at the sender of the fake Starlink email and at the URL of the malicious login page: None will be attached to an official Starlink domain. In fact, this particularly fake Starlink email came from "edparent@xplornet.com,” according to the Reddit user. Meanwhile, the phishing page itself was hosted on a .es domain from Spain.

The malicious Starlink pages will also accept any information you type, including a made-up password—a telltale sign that the phishing attack is designed solely to collect your information.

But one lingering mystery is whether the scammers have found a way to identify Starlink subscribers. The Reddit user who received the phishing attack told PCMag: "No idea how they would know I'm a Starlink customer, it may just be a mass email scam with the idea that a certain percentage of the recipients are Starlink customers. The email it was sent from was an xplornet address, with whom I was a customer before switching to Starlink."

About Our Expert

Michael Kan

Michael Kan

Principal Reporter

My Experience

I've been a journalist for over 15 years. I got my start as a schools and cities reporter in Kansas City and joined PCMag in 2017, where I cover satellite internet services, cybersecurity, PC hardware, and more. I'm currently based in San Francisco, but previously spent over five years in China, covering the country's technology sector.

Since 2020, I've covered the launch and explosive growth of SpaceX's Starlink satellite internet service, writing 600+ stories on availability and feature launches, but also the regulatory battles over the expansion of satellite constellations, fights with rival providers like AST SpaceMobile and Amazon, and the effort to expand into satellite-based mobile service. I've combed through FCC filings for the latest news and driven to remote corners of California to test Starlink's cellular service.

I also cover cyber threats, from ransomware gangs to the emergence of AI-based malware. In 2024 and 2025, the FTC forced Avast to pay consumers $16.5 million for secretly harvesting and selling their personal information to third-party clients, as revealed in my joint investigation with Motherboard.

I also cover the PC graphics card market. Pandemic-era shortages led me to camp out in front of a Best Buy to get an RTX 3000. I'm now following how the AI-driven memory shortage is impacting the entire consumer electronics market. I'm always eager to learn more, so please jump in the comments with feedback and send me tips.

The Best Tech I've Had:

  • My first video game console: a Nintendo Famicom
  • I loved my Sega Saturn despite PlayStation's popularity.
  • The iPod Video I received as a gift in college
  • Xbox 360 FTW
  • The Galaxy Nexus was the first smartphone I was proud to own.
  • The PC desktop I built in 2013, which still works to this day.

Read the latest from Michael Kan

Read full bio