AOA Forums AOA Forums AOA Forums Folding For Team 45 AOA Files Home Front Page Become an AOA Subscriber! UserCP Calendar Memberlist FAQ Search Forum Home


Go Back   AOA Forums > Software > Data Security

Data Security Viruses, Firewalls and Safe computing


Reply
 
LinkBack Thread Tools Rate Thread
  #1 (permalink)  
Old 17th May, 2012, 06:53 PM
danrok's Avatar
AOA Staff
 
Join Date: March 2003
Location: Great Britain
Posts: 18,917

Where to report website being used for phishing?

This site needs reporting...

Code:
twititre.com/re-log-in/ml/?&session_timed_out
Spoof Twitter log-in page. Do not login there!
__________________
Desktop PC: AMD FX-8370E / Asus M5A99X Evo R2.0 Motherboard / 16GB DDR3 RAM / GeForce GTX 970
AOA Team fah

Last edited by danrok; 17th May, 2012 at 07:10 PM.
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #2 (permalink)  
Old 17th May, 2012, 09:33 PM
Kaitain's Avatar
Member
Mars Rover Champion, Joust Champion
 
Join Date: September 2001
Location: MK10, UK.
Posts: 4,372
Send a message via MSN to Kaitain Send a message via Skype™ to Kaitain

As it's a .com, then Verisign as the owners of that TLD might be interested in it. Unfortunately I rather doubt the local registrar will care, given where it's registered.

EDIT:: And Twitter themselves.

Code:
Whois Server Version 2.0

Domain names in the .com and .net domains can now be registered
with many different competing registrars. Go to http://www.internic.net
for detailed information.

   Domain Name: TWITITRE.COM
   Registrar: XIN NET TECHNOLOGY CORPORATION
   Whois Server: whois.paycenter.com.cn
   Referral URL: http://www.xinnet.com
   Name Server: NS11.XINCACHE.COM
   Name Server: NS12.XINCACHE.COM
   Status: ok
   Updated Date: 24-apr-2012
   Creation Date: 24-apr-2012
   Expiration Date: 24-apr-2013

>>> Last update of whois database: Thu, 17 May 2012 20:28:38 UTC <<<

[snip]whois db terms of service[/snip]

Domain Name      : twititre.com
PunnyCode        : twititre.com
Creation Date    : 2012-04-25 10:07:14
Updated Date     : 2012-04-25 10:07:14
Expiration Date  : 2013-04-25 10:07:14


Registrant:
  Organization   : wang xing
  Name           : wang xing
  Address        : Shang hai
  City           : shanghai
  Province/State : Shanghai
  Country        : CN
  Postal Code    : 200084

Administrative Contact:
  Name           : wang xing
  Organization   : wang xing
  Address        : Shang hai
  City           : shanghai
  Province/State : Shanghai
  Country        : shanghai
  Postal Code    : 200084
  Phone Number   : 86-021-25521441
  Fax            : 86-021-25521441
  Email          : shujun355@hotmail.com

Technical Contact:
  Name           : wang xing
  Organization   : wang xing
  Address        : Shang hai
  City           : shanghai
  Province/State : Shanghai
  Country        : shanghai
  Postal Code    : 200084
  Phone Number   : 86-021-25521441
  Fax            : 86-021-25521441
  Email          : shujun355@hotmail.com

<script src="http://img2.xinnet.com/d/js/acmsd/thea178.js"></script>&nbsp;
Billing Contact:
  Name           : wang xing
  Organization   : wang xing
  Address        : Shang hai
  City           : shanghai
  Province/State : Shanghai
  Country        : shanghai
  Postal Code    : 200084
  Phone Number   : 86-021-25521441
  Fax            : 86-021-25521441
  Email          : shujun355@hotmail.com
__________________
It is by coffee alone I set my mind in motion...

Last edited by Kaitain; 17th May, 2012 at 09:46 PM.
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #3 (permalink)  
Old 17th May, 2012, 11:11 PM
danrok's Avatar
AOA Staff
 
Join Date: March 2003
Location: Great Britain
Posts: 18,917

They had compromised a legit Twitter account, and then sent me a direct message with link to that page.

I have sent a message to the real Twitter account holder, and to Twitter.

I'd imagine Twitter would want that domain zapped. Does no good for their business.
__________________
Desktop PC: AMD FX-8370E / Asus M5A99X Evo R2.0 Motherboard / 16GB DDR3 RAM / GeForce GTX 970
AOA Team fah
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #4 (permalink)  
Old 17th May, 2012, 11:14 PM
danrok's Avatar
AOA Staff
 
Join Date: March 2003
Location: Great Britain
Posts: 18,917

Found this after a search for the email address:
PhishTank > Details on suspected phish #1421483
__________________
Desktop PC: AMD FX-8370E / Asus M5A99X Evo R2.0 Motherboard / 16GB DDR3 RAM / GeForce GTX 970
AOA Team fah
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #5 (permalink)  
Old 19th May, 2012, 05:44 AM
Daniel ~'s Avatar
Chief BBS Administrator
 
Join Date: September 2001
Location: Seattle Wa.
Posts: 45,605

They will wait untill serious injury occures, it's hard to get the rich to do anything...":O}
__________________
"Though all men live in ignorance before mystery,
they need not live in darkness...
Justice is foundation and Mercy ETERNAL
."
DKE

"All that we do is touched by Ocean
Yet we remain on the shore of what we know."
Richard Wilbur

[img]/forum/attachments/random-nonsense/16515-sigs-dan_drag.jpg[/img]
Subscribers! Ask Pitch about a Custom Sig Graphic

Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #6 (permalink)  
Old 19th May, 2012, 03:25 PM
danrok's Avatar
AOA Staff
 
Join Date: March 2003
Location: Great Britain
Posts: 18,917

At least now my browser is showing red warning box for that link. Someone has done something about it.
__________________
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #7 (permalink)  
Old 19th May, 2012, 05:18 PM
Daniel ~'s Avatar
Chief BBS Administrator
 
Join Date: September 2001
Location: Seattle Wa.
Posts: 45,605

You did your part! ":O}
__________________
"Though all men live in ignorance before mystery,
they need not live in darkness...
Justice is foundation and Mercy ETERNAL
."
DKE

"All that we do is touched by Ocean
Yet we remain on the shore of what we know."
Richard Wilbur

[img]/forum/attachments/random-nonsense/16515-sigs-dan_drag.jpg[/img]
Subscribers! Ask Pitch about a Custom Sig Graphic

Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #8 (permalink)  
Old 29th May, 2012, 05:54 PM
danrok's Avatar
AOA Staff
 
Join Date: March 2003
Location: Great Britain
Posts: 18,917

And again, this time from another local Twitter account.

Different domain name, but similar direct message sent.

This time my browser warns me about the domain.

Code:
[Querying whois.verisign-grs.com]
[whois.verisign-grs.com]

Whois Server Version 2.0

Domain names in the .com and .net domains can now be registered
with many different competing registrars. Go to http://www.internic.net
for detailed information.

   Domain Name: ITVITTER.COM
   Registrar: CHENGDU WEST DIMENSION DIGITAL TECHNOLOGY CO., LTD.
   Whois Server: whois.west263.com
   Referral URL: http://www.west263.com
   Name Server: NS3.MYHOSTADMIN.NET
   Name Server: NS4.MYHOSTADMIN.NET
   Status: ok
   Updated Date: 28-may-2012
   Creation Date: 28-may-2012
   Expiration Date: 28-may-2013

>>> Last update of whois database: Tue, 29 May 2012 16:51:57 UTC <<<
__________________
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #9 (permalink)  
Old 29th May, 2012, 07:03 PM
Daniel ~'s Avatar
Chief BBS Administrator
 
Join Date: September 2001
Location: Seattle Wa.
Posts: 45,605

"Where ever particular people congregate"

Some smuck is trying to rip them off...where's the love? ":O}
__________________
"Though all men live in ignorance before mystery,
they need not live in darkness...
Justice is foundation and Mercy ETERNAL
."
DKE

"All that we do is touched by Ocean
Yet we remain on the shore of what we know."
Richard Wilbur

[img]/forum/attachments/random-nonsense/16515-sigs-dan_drag.jpg[/img]
Subscribers! Ask Pitch about a Custom Sig Graphic

Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #10 (permalink)  
Old 30th May, 2012, 02:44 AM
ThunderRd's Avatar
Irreverent Query Chairman
 
Join Date: June 2007
Location: NYC native in northern Thailand
Posts: 2,232

I reckon anytime you see a hotmail address listed as the billing contact you can be a bit suspicious.
__________________
#1: Tt Armor, ASUS Maximus Extreme, QX9650@4.1G, 8G Corsair Dominator GT DDR3-2000, Corsair HX1050, H2O-Swiftech, Gigabyte GTX470/Arctic Accelero Xtreme Plus II, Intel 520 SSD, Kingston SSD, 2xRaptor 150G RAID0, Win 7 Pro 64
#2: Tt Shark, ASUS P5Q Pro Turbo, Q6600@3.8G, 4G HyperX-1600, Corsair HX850, CoolerMaster V10, 2xASUS 9600GT, 2xRaptor 74G RAID0, OCZ Vertex 4 SSD, Gentoo/siduction Linux [64-bit]
#3, #4: Opteron 170@2.75G nude, A8N-SLI Deluxe, Gentoo

AOA Folding @HomeOur sister site: www.gamersonlinux.com
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
Reply

Tags
fake website , phishing , twitter



Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Rate This Thread
Rate This Thread:

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On


Similar Threads
Thread Thread Starter Forum Replies Last Post
Report Blasts EV Viability, Advocates Call Report Biased, Outdated Daniel ~ Random Nonsense! 1 24th December, 2009 09:48 PM
Report: Phishing A Low-Paying, Low-Skills Job Daniel ~ Data Security 0 8th January, 2009 06:06 PM
Phishing tricks.... Lazgoat Data Security 6 18th December, 2004 10:21 PM


All times are GMT +1. The time now is 07:59 AM.


Copyright ©2001 - 2010, AOA Forums
Don't Click Here Don't Click Here Either

Search Engine Friendly URLs by vBSEO 3.3.0