'Re: [Full-disclosure] Paypal phishing attempt'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       full-disclosure
Subject:    Re: [Full-disclosure] Paypal phishing attempt
From:       Mike Klein <mklein () vxappliance ! com>
Date:       2005-11-29 19:49:07
Message-ID: 438CB0B3.5070708 () vxappliance ! com
[Download RAW message or body]

[Attachment #2 (multipart/alternative)]


eBay/PayPal policy is to have phishes reported to either spoof@ebay.com 
or spoof@paypal.com.

Spoof sites once confirmed are reported to relevant authority in 
addition to being incorporated into eBay toolbar which provides phishing 
protection.


mike

Todd Towles wrote:

>I suggested both 
>
>spoof@paypal.com 
>and  
>reportphishing@antiphishing.org 
>
>In this case, 210.202.161.99, is in Taiwan - hostmaster@twnic.net or
>adm@aptg.com.tw
>
>-Todd
>
>
>  
>
>>-----Original Message-----
>>From: full-disclosure-bounces@lists.grok.org.uk 
>>[mailto:full-disclosure-bounces@lists.grok.org.uk] On Behalf 
>>Of Morning Wood
>>Sent: Tuesday, November 29, 2005 10:19 AM
>>To: pagvac; full-disclosure@lists.grok.org.uk
>>Subject: Re: [Full-disclosure] Paypal phishing attempt
>>
>>    
>>
>>>Someone with more time than me please report the following scam:
>>>http://210.202.161.99/us/Account_verification/webscr-cmd=_login/
>>>      
>>>
>>for sites outside the usa, it is futile to contact ebay about 
>>every site.
>>the best thing is to contact the offending server / hosting / 
>>isp _______________________________________________
>>Full-Disclosure - We believe in it.
>>Charter: http://lists.grok.org.uk/full-disclosure-charter.html
>>Hosted and sponsored by Secunia - http://secunia.com/
>>
>>    
>>
>_______________________________________________
>Full-Disclosure - We believe in it.
>Charter: http://lists.grok.org.uk/full-disclosure-charter.html
>Hosted and sponsored by Secunia - http://secunia.com/
>
>  
>

[Attachment #5 (text/html)]

<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
  <meta content="text/html;charset=ISO-8859-1" http-equiv="Content-Type">
  <title></title>
</head>
<body bgcolor="#ffffff" text="#000000">
eBay/PayPal policy is to have phishes reported to either <a class="moz-txt-link-abbreviated" \
href="mailto:spoof@ebay.com">spoof@ebay.com</a> or <a class="moz-txt-link-abbreviated" \
href="mailto:spoof@paypal.com">spoof@paypal.com</a>.<br> <br>
Spoof sites once confirmed are reported to relevant authority in
addition to being incorporated into eBay toolbar which provides
phishing protection.<br>
<br>
<br>
mike<br>
<br>
Todd Towles wrote:
<blockquote
 cite="mid9E97F0997FB84D42B221B9FB203EFA2701DA41CF@dc1ms2.msad.brookshires.net"
 type="cite">
  <pre wrap="">I suggested both 

<a class="moz-txt-link-abbreviated" href="mailto:spoof@paypal.com">spoof@paypal.com</a> 
and  
<a class="moz-txt-link-abbreviated" \
href="mailto:reportphishing@antiphishing.org">reportphishing@antiphishing.org</a> 

In this case, 210.202.161.99, is in Taiwan - <a class="moz-txt-link-abbreviated" \
href="mailto:hostmaster@twnic.net">hostmaster@twnic.net</a> or <a \
class="moz-txt-link-abbreviated" href="mailto:adm@aptg.com.tw">adm@aptg.com.tw</a>

-Todd


  </pre>
  <blockquote type="cite">
    <pre wrap="">-----Original Message-----
From: <a class="moz-txt-link-abbreviated" \
href="mailto:full-disclosure-bounces@lists.grok.org.uk">full-disclosure-bounces@lists.grok.org.uk</a> \
 [<a class="moz-txt-link-freetext" \
href="mailto:full-disclosure-bounces@lists.grok.org.uk">mailto:full-disclosure-bounces@lists.grok.org.uk</a>] \
On Behalf  Of Morning Wood
Sent: Tuesday, November 29, 2005 10:19 AM
To: pagvac; <a class="moz-txt-link-abbreviated" \
                href="mailto:full-disclosure@lists.grok.org.uk">full-disclosure@lists.grok.org.uk</a>
                
Subject: Re: [Full-disclosure] Paypal phishing attempt

    </pre>
    <blockquote type="cite">
      <pre wrap="">Someone with more time than me please report the following scam:
<a class="moz-txt-link-freetext" \
href="http://210.202.161.99/us/Account_verification/webscr-cmd=_login/">http://210.202.161.99/us/Account_verification/webscr-cmd=_login/</a>
  </pre>
    </blockquote>
    <pre wrap="">for sites outside the usa, it is futile to contact ebay about 
every site.
the best thing is to contact the offending server / hosting / 
isp _______________________________________________
Full-Disclosure - We believe in it.
Charter: <a class="moz-txt-link-freetext" \
href="http://lists.grok.org.uk/full-disclosure-charter.html">http://lists.grok.org.uk/full-disclosure-charter.html</a>
 Hosted and sponsored by Secunia - <a class="moz-txt-link-freetext" \
href="http://secunia.com/">http://secunia.com/</a>

    </pre>
  </blockquote>
  <pre wrap=""><!---->_______________________________________________
Full-Disclosure - We believe in it.
Charter: <a class="moz-txt-link-freetext" \
href="http://lists.grok.org.uk/full-disclosure-charter.html">http://lists.grok.org.uk/full-disclosure-charter.html</a>
 Hosted and sponsored by Secunia - <a class="moz-txt-link-freetext" \
href="http://secunia.com/">http://secunia.com/</a>

  </pre>
</blockquote>
</body>
</html>



_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic