[prev in list] [next in list] [prev in thread] [next in thread]
List: full-disclosure
Subject: Re: [Full-disclosure] Paypal phishing attempt
From: Mike Klein <mklein () vxappliance ! com>
Date: 2005-11-29 19:49:07
Message-ID: 438CB0B3.5070708 () vxappliance ! com
[Download RAW message or body]
[Attachment #2 (multipart/alternative)]
eBay/PayPal policy is to have phishes reported to either spoof@ebay.com
or spoof@paypal.com.
Spoof sites once confirmed are reported to relevant authority in
addition to being incorporated into eBay toolbar which provides phishing
protection.
mike
Todd Towles wrote:
>I suggested both
>
>spoof@paypal.com
>and
>reportphishing@antiphishing.org
>
>In this case, 210.202.161.99, is in Taiwan - hostmaster@twnic.net or
>adm@aptg.com.tw
>
>-Todd
>
>
>
>
>>-----Original Message-----
>>From: full-disclosure-bounces@lists.grok.org.uk
>>[mailto:full-disclosure-bounces@lists.grok.org.uk] On Behalf
>>Of Morning Wood
>>Sent: Tuesday, November 29, 2005 10:19 AM
>>To: pagvac; full-disclosure@lists.grok.org.uk
>>Subject: Re: [Full-disclosure] Paypal phishing attempt
>>
>>
>>
>>>Someone with more time than me please report the following scam:
>>>http://210.202.161.99/us/Account_verification/webscr-cmd=_login/
>>>
>>>
>>for sites outside the usa, it is futile to contact ebay about
>>every site.
>>the best thing is to contact the offending server / hosting /
>>isp _______________________________________________
>>Full-Disclosure - We believe in it.
>>Charter: http://lists.grok.org.uk/full-disclosure-charter.html
>>Hosted and sponsored by Secunia - http://secunia.com/
>>
>>
>>
>_______________________________________________
>Full-Disclosure - We believe in it.
>Charter: http://lists.grok.org.uk/full-disclosure-charter.html
>Hosted and sponsored by Secunia - http://secunia.com/
>
>
>
[Attachment #5 (text/html)]
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<meta content="text/html;charset=ISO-8859-1" http-equiv="Content-Type">
<title></title>
</head>
<body bgcolor="#ffffff" text="#000000">
eBay/PayPal policy is to have phishes reported to either <a class="moz-txt-link-abbreviated" \
href="mailto:spoof@ebay.com">spoof@ebay.com</a> or <a class="moz-txt-link-abbreviated" \
href="mailto:spoof@paypal.com">spoof@paypal.com</a>.<br> <br>
Spoof sites once confirmed are reported to relevant authority in
addition to being incorporated into eBay toolbar which provides
phishing protection.<br>
<br>
<br>
mike<br>
<br>
Todd Towles wrote:
<blockquote
cite="mid9E97F0997FB84D42B221B9FB203EFA2701DA41CF@dc1ms2.msad.brookshires.net"
type="cite">
<pre wrap="">I suggested both
<a class="moz-txt-link-abbreviated" href="mailto:spoof@paypal.com">spoof@paypal.com</a>
and
<a class="moz-txt-link-abbreviated" \
href="mailto:reportphishing@antiphishing.org">reportphishing@antiphishing.org</a>
In this case, 210.202.161.99, is in Taiwan - <a class="moz-txt-link-abbreviated" \
href="mailto:hostmaster@twnic.net">hostmaster@twnic.net</a> or <a \
class="moz-txt-link-abbreviated" href="mailto:adm@aptg.com.tw">adm@aptg.com.tw</a>
-Todd
</pre>
<blockquote type="cite">
<pre wrap="">-----Original Message-----
From: <a class="moz-txt-link-abbreviated" \
href="mailto:full-disclosure-bounces@lists.grok.org.uk">full-disclosure-bounces@lists.grok.org.uk</a> \
[<a class="moz-txt-link-freetext" \
href="mailto:full-disclosure-bounces@lists.grok.org.uk">mailto:full-disclosure-bounces@lists.grok.org.uk</a>] \
On Behalf Of Morning Wood
Sent: Tuesday, November 29, 2005 10:19 AM
To: pagvac; <a class="moz-txt-link-abbreviated" \
href="mailto:full-disclosure@lists.grok.org.uk">full-disclosure@lists.grok.org.uk</a>
Subject: Re: [Full-disclosure] Paypal phishing attempt
</pre>
<blockquote type="cite">
<pre wrap="">Someone with more time than me please report the following scam:
<a class="moz-txt-link-freetext" \
href="http://210.202.161.99/us/Account_verification/webscr-cmd=_login/">http://210.202.161.99/us/Account_verification/webscr-cmd=_login/</a>
</pre>
</blockquote>
<pre wrap="">for sites outside the usa, it is futile to contact ebay about
every site.
the best thing is to contact the offending server / hosting /
isp _______________________________________________
Full-Disclosure - We believe in it.
Charter: <a class="moz-txt-link-freetext" \
href="http://lists.grok.org.uk/full-disclosure-charter.html">http://lists.grok.org.uk/full-disclosure-charter.html</a>
Hosted and sponsored by Secunia - <a class="moz-txt-link-freetext" \
href="http://secunia.com/">http://secunia.com/</a>
</pre>
</blockquote>
<pre wrap=""><!---->_______________________________________________
Full-Disclosure - We believe in it.
Charter: <a class="moz-txt-link-freetext" \
href="http://lists.grok.org.uk/full-disclosure-charter.html">http://lists.grok.org.uk/full-disclosure-charter.html</a>
Hosted and sponsored by Secunia - <a class="moz-txt-link-freetext" \
href="http://secunia.com/">http://secunia.com/</a>
</pre>
</blockquote>
</body>
</html>
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic