Phishig site in HTTPS (wow) missed by SafeOnline

Discussion in 'Prevx Releases' started by Romagnolo1973, Jan 11, 2010.

Thread Status:
Not open for further replies.
  1. Romagnolo1973

    Romagnolo1973 Registered Member

    Joined:
    Feb 17, 2009
    Posts:
    565
    Location:
    Italy - Ravenna
    X Joe, this site is phishing 100% concernig PosteItaliane (italian national mail service & banking) , even if is a HTTPS site with a certificate (ohh my good is realy a good phishing ) so I changes the link for not been redirect acindentaly :D
    Xttps://bancopostaonline.aposte.it
    Safeonline don't pass the test with IE8 (Firefox, chrome & Opera detected it as pishing, IE not) as you can see here
    http://img192.imageshack.us/img192/2357/clipboard02b.jpg
    please insert it on your pishing list for italian people
    If you wont study it (is realy realy a good phishing) you can read this post of our italian friend Edgard (you can translate with google)

    http://edetools.blogspot.com/2010/01/un-phishing-certificato-ai-danni-di.html

    thanks
     
  2. PrevxHelp

    PrevxHelp Former Prevx Moderator

    Joined:
    Sep 14, 2008
    Posts:
    8,242
    Location:
    USA/UK
    Thanks for the information :) It looks like this domain is already down but I'll see what we can do to improve our phishing protection over Italian domains!
     
  3. Edgar Bangkok

    Edgar Bangkok Registered Member

    Joined:
    Jan 13, 2010
    Posts:
    1
    In reality the phishing domain Poste IT is always online , at least from my observations.

    I think that whoever finds the domain OFF fall into the error to load the web address, taking as reference a value of IP different from Italian IP (ex.USA, UK etc. ....)
    In this case the phishing site appears OFF-LINE

    Edgar :)


    More details over my blog

    http://edetools.blogspot.com/2010/01/una-precisazione-al-riguardo-del.html
     
  4. EraserHW

    EraserHW Malware Expert

    Joined:
    Oct 19, 2005
    Posts:
    588
    Location:
    Italy
    Yes, we're monitoring the website and we are going to handle it with our anti-phishing feature ;)
     
  5. Romagnolo1973

    Romagnolo1973 Registered Member

    Joined:
    Feb 17, 2009
    Posts:
    565
    Location:
    Italy - Ravenna
    Thanks Joe & Eraser.
    To tell the true the best way to increase security (especially for site not USA or UK that you control better) is allowin' users to report the site with a submit button, as we talked about in other posts in the past, and furthermore this will simplify your work.
    This in my humble opinion (very humble:D)
     
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.