found a phising site: wyciek-fotek.eu

Discussion in 'privacy problems' started by lucd, Jul 30, 2019.

  1. lucd

    lucd Registered Member

    Joined:
    Jan 30, 2018
    Posts:
    197
    Location:
    Island of Woman
    the vector of attack is a message from your facebook friend, it says that your photos are on the Internet (the address of the site means literally, photo-leaks.eu) suggesting that they are of pornographic nature. Your friend will ask you to click on the link so to remove these photos
    if if you go on the site (didn't see attack attempts from the site like drive-by download), it asks you to login with facebook account. The look of the site is identical to facebook but the name. The site is https. 194.181.228.50, probably Kielce (Poland).

    not only it will obviously steal your username and facebook password but it will ask you to send SMS to be able to login, so they are both stealing money and identity, to further spread on the net

    it does not seam that they have real photos, but the targer are young women in Poland
     
    Last edited: Jul 30, 2019
  2. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    12,352
    Location:
    Here
    It's blocked by Kaspersky:

    upload_2019-7-30_20-42-41.png
     
  3. JRViejo

    JRViejo Super Moderator

    Joined:
    Jul 9, 2008
    Posts:
    37,120
    Location:
    U.S.A.
  4. lucd

    lucd Registered Member

    Joined:
    Jan 30, 2018
    Posts:
    197
    Location:
    Island of Woman
    not by eset, tried to report the site on several places, since they got my friend at very least (the one that sent me the message), they seam to have some limited success with the campaign
    sucuri and virus total , give 0 results too
     
  5. JRViejo

    JRViejo Super Moderator

    Joined:
    Jul 9, 2008
    Posts:
    37,120
    Location:
    U.S.A.
  6. lucd

    lucd Registered Member

    Joined:
    Jan 30, 2018
    Posts:
    197
    Location:
    Island of Woman
    not sure, there is a site called antyradio, they warn about hackers sometimes and various scams, they mention this site as a malware campain too as well

    student project or not they steal money (you must send them SMS to login) and prompt for your facebook password and pretend to be facebook, do you know any student project that does that? I don't, despite RODO they are taking your username, password, phone number and money, and use your account to spread (identity theft)

    if this is a student project they exaggerated and I want this to stop, it does harm ppl
     
    Last edited: Jul 30, 2019
  7. JRViejo

    JRViejo Super Moderator

    Joined:
    Jul 9, 2008
    Posts:
    37,120
    Location:
    U.S.A.
    lucd, just providing information, that's all. :)
     
  8. lucd

    lucd Registered Member

    Joined:
    Jan 30, 2018
    Posts:
    197
    Location:
    Island of Woman
    @JRViejo no I wasn't sarcastic, its the Internet its hard to convey sentiments or ideas, mine was absolutely a neutral response (I also had doubts because of what you mentioned), thanks for your information and your time
     
  9. JRViejo

    JRViejo Super Moderator

    Joined:
    Jul 9, 2008
    Posts:
    37,120
    Location:
    U.S.A.
    lucd, I understand. You're welcome! Take care.
     
Loading...
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.