Phishig site in HTTPS (wow) missed by SafeOnline

Discussion in 'Prevx Releases' started by Romagnolo1973, Jan 11, 2010.

Thread Status:
Not open for further replies.
  1. Romagnolo1973

    Romagnolo1973 Registered Member

    Joined:
    Feb 17, 2009
    Posts:
    518
    Location:
    Italy - Ravenna
    X Joe, this site is phishing 100% concernig PosteItaliane (italian national mail service & banking) , even if is a HTTPS site with a certificate (ohh my good is realy a good phishing ) so I changes the link for not been redirect acindentaly :D
    Xttps://bancopostaonline.aposte.it
    Safeonline don't pass the test with IE8 (Firefox, chrome & Opera detected it as pishing, IE not) as you can see here
    http://img192.imageshack.us/img192/2357/clipboard02b.jpg
    please insert it on your pishing list for italian people
    If you wont study it (is realy realy a good phishing) you can read this post of our italian friend Edgard (you can translate with google)

    http://edetools.blogspot.com/2010/01/un-phishing-certificato-ai-danni-di.html

    thanks
     
  2. PrevxHelp

    PrevxHelp Former Prevx Moderator

    Joined:
    Sep 14, 2008
    Posts:
    8,242
    Location:
    USA/UK
    Thanks for the information :) It looks like this domain is already down but I'll see what we can do to improve our phishing protection over Italian domains!
     
  3. Edgar Bangkok

    Edgar Bangkok Registered Member

    Joined:
    Jan 13, 2010
    Posts:
    1
    In reality the phishing domain Poste IT is always online , at least from my observations.

    I think that whoever finds the domain OFF fall into the error to load the web address, taking as reference a value of IP different from Italian IP (ex.USA, UK etc. ....)
    In this case the phishing site appears OFF-LINE

    Edgar :)


    More details over my blog

    http://edetools.blogspot.com/2010/01/una-precisazione-al-riguardo-del.html
     
  4. EraserHW

    EraserHW Malware Expert

    Joined:
    Oct 19, 2005
    Posts:
    588
    Location:
    Italy
    Yes, we're monitoring the website and we are going to handle it with our anti-phishing feature ;)
     
  5. Romagnolo1973

    Romagnolo1973 Registered Member

    Joined:
    Feb 17, 2009
    Posts:
    518
    Location:
    Italy - Ravenna
    Thanks Joe & Eraser.
    To tell the true the best way to increase security (especially for site not USA or UK that you control better) is allowin' users to report the site with a submit button, as we talked about in other posts in the past, and furthermore this will simplify your work.
    This in my humble opinion (very humble:D)
     
Thread Status:
Not open for further replies.