Tweet
Hmmm.
I got the email below this morning.
Instantly thought it was a scam but to be safe I investigated and the index html file was where they said it would be.
To be on safe side I've deleted the wordpress database (it was only a test site) and changed my ftp password/hosting login.
If it's not genuine it's no loss...but what do others think? The education site looks gen.
I got the email below this morning.
Instantly thought it was a scam but to be safe I investigated and the index html file was where they said it would be.
To be on safe side I've deleted the wordpress database (it was only a test site) and changed my ftp password/hosting login.
If it's not genuine it's no loss...but what do others think? The education site looks gen.
Dear Website Administrator,
We are contacting you to report that your website (edit) has been
compromised and fraudulent content targeting our client Chase Bank has
been placed at:
(edit)/wp-content/themes/update/chaseupdate/index.html
IP Address: (edit)
A criminal has placed this fake login page for the purpose of credit
card fraud and identity theft. Please remove all files related to this
attack and take action to secure your website.
We are an Internet security company located in Tacoma, Washington. If
you are unable to resolve this problem yourself, please contact your
webhost for assistance.
Additionally, we invite you to help us and the Anti-Phishing Working
Group (APWG) in the fight against phishing.
Please help us to educate consumers who are fooled by this criminal web
site. You can do this by pointing the illegal URL to an educational page
at:
http://education.apwg.org/r/en?ORIGI...randing=497126
The instructions on how to implement it can be found here:
http://education.apwg.org/r/how_to.html
We can be reached 24/7 if you have any questions.
Best Regards,
--
IID -- on behalf of Chase Bank
Actively Securing the Extended Enterprise
E-mail: alert@internetidentity.com
Office: +1.253.590.4100 | Fax: +1.425.699.6597
II Email Number 191758 II
Case Number: SIT117883
We are contacting you to report that your website (edit) has been
compromised and fraudulent content targeting our client Chase Bank has
been placed at:
(edit)/wp-content/themes/update/chaseupdate/index.html
IP Address: (edit)
A criminal has placed this fake login page for the purpose of credit
card fraud and identity theft. Please remove all files related to this
attack and take action to secure your website.
We are an Internet security company located in Tacoma, Washington. If
you are unable to resolve this problem yourself, please contact your
webhost for assistance.
Additionally, we invite you to help us and the Anti-Phishing Working
Group (APWG) in the fight against phishing.
Please help us to educate consumers who are fooled by this criminal web
site. You can do this by pointing the illegal URL to an educational page
at:
http://education.apwg.org/r/en?ORIGI...randing=497126
The instructions on how to implement it can be found here:
http://education.apwg.org/r/how_to.html
We can be reached 24/7 if you have any questions.
Best Regards,
--
IID -- on behalf of Chase Bank
Actively Securing the Extended Enterprise
E-mail: alert@internetidentity.com
Office: +1.253.590.4100 | Fax: +1.425.699.6597
II Email Number 191758 II
Case Number: SIT117883
Comment