Well, last week I detailed attempts to get one phishing site shut down, then another two sites shut down. All three of those are out of operation now. I’ve gone after a fourth and it’s still up and going several days on. It’s spoofing ebay’s site and I’ve contacted both ebay through their fraud notification email system and I’ve contacted the abuse admin at the domain in question. I seem to be having a hard time pinning down anyone else to contact. So, if anyone views this and wants to help, the phishing site is at http://220.127.116.11/ebay/ there was no obvious directory listing of phished information, so I don’t feel like I’m giving you anything you wouldn’t have if you got the same phishing email.
The contact information for this ip address is as follows:
inetnum: 18.104.22.168 – 22.214.171.124
descr: XI’AN HAI TIAN NETCLUB
descr: Xi’an city, shaanxi
changed: email@example.com 20021008
status: ASSIGNED NON-PORTABLE
person: WANG WEI NA
address: Xi Xin street 90# XIAN
changed: firstname.lastname@example.org 20001127
Thanks for anyone that can pitch in and help see this page go down.
Related PostsRelated Posts
- More on Explorer vulnerability Among other things... Sans has lowered the infocon to green, NOT that the threat is diminished, but there have been no new developments with regards to the announcement yesterday of a major Internet Explorer security vulnerability. Sans recommends browsing the web with firefox (with the noscript extension, so you can......
- What a week.... I think it's time to pass along a long story of what's gone on over the last week or so here and some of the reasons there hasn't been anything posted. Generally, I would say that work has been busy, but something happened last week that went a bit beyond......
- The "secure software" dilemma It's quite a dilemma when a software product is billed as more secure than another.... several days back when Mozilla Firefox released v. 126.96.36.199 which fixed a number of security issues, I saw someone comment "I thought firefox was supposed to be secure." I think there's a misunderstanding when it......
- Dell PowerEdge Motherboard Firmware Contains Malware SecurityOrb.com has learned Dell has officially confirmed that some of its PowerEdge R410 rack server motherboards were shipped to customers with malware embedded on the server management firmware. Many customers became frustrated due to the company’s slow response to provide details on the matter. Source: http://en.community.dell.com/support-forums/servers/f/956/t/19339458.aspx For more information on......
- Fed Launches QE2: How Does That Benefit Me? /caption] Today the Federal Reserve launched the highly anticipated QE2, announcing that it will buy $600 million of Treasuries in 2011 ($75 million per month). It will also continue to reinvest payments on its securities holdings which could bring the total capital injection closer to $1 trillion dollars. I'm still......
- Ernests Gulbis Wins against Mardy Fish in Farmers Classic There are many different times when watching tennis that you will encounter an upset which you did not expect. This weekend was one of those times. This is because Mardy Fish was beaten by 22 year old Ernests Gublis. The young player squared off against the premiere tennis player from......
- Phishing – Bank of the West Notice part three… (deeper sigh)
- Anti phishing information (phighting phishing ?)
- There aren’t THAT many phish in the sea, more on phighting phishing
- Phish down – finally
- More phishing… Paypal is the target this time