UK-based technologist Terence Eden was surprised that the malicious domain contained the letters "jan02" in attempt to spoof a legitimate website. This helped the URL look even more convincing when it was sent in a phishing message on the same date.
Source Link
