API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Nov 12th, 2019
138
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 2.14 KB | None | 0 0
raw download clone embed print report
  1. > -------------------
  2.  
  3. > Dear Sir or Madam,
  4.  
  5. >
  6.  
  7. > We have discovered a phishing attack located on your network:
  8.  
  9. >
  10.  
  11. > hxxp://financetokenavaila.hopto[.]org/xixix/login.php?cmd=login_submit&id=468cc5e74685e13fecb806511d006cd2468cc5e74685e13fecb806511d006cd2&session=468cc5e74685e13fecb806511d006cd2468cc5e74685e13fecb806511d006cd2 [88.198.102.27]
  12.  
  13. >
  14.  
  15. > Although we have previously contacted you about this attack, we are contacting you again because it has recently reappeared.
  16.  
  17. >
  18.  
  19. > We believe that this attack is being restricted so it is only visible from certain countries. Before deciding that the attack has been resolved please confirm it cannot be viewed from the following countries:
  20.  
  21. > France
  22.  
  23. > Italy
  24.  
  25. > United States
  26.  
  27. > We previously contacted you about this issue on 2019-08-24 10:27:51 (UTC).
  28.  
  29. > Since our last notification, the following additional URL(s) have been detected:
  30.  
  31. >
  32.  
  33. > hxxp://financetokenavaila.hopto[.]org/xixix/login.php?cmd=login_submit&id=468cc5e74685e13fecb806511d006cd2468cc5e74685e13fecb806511d006cd2&session=468cc5e74685e13fecb806511d006cd2468cc5e74685e13fecb806511d006cd2
  34.  
  35.  
  36.  
  37. >
  38.  
  39. > This attack targets our customer, Microsoft, website URL https://www.microsoft.com/.
  40.  
  41. >
  42.  
  43. > Would it be possible to have the fraudulent content, and any other associated fraudulent content, taken down as soon as you are able to?
  44.  
  45. >
  46.  
  47. > Additionally, please keep the fraudulent content safe so that our customer and law enforcement agencies can investigate this incident further once the site is offline.
  48.  
  49. >
  50.  
  51. > For more information please see https://incident.netcraft.com/6ff53bfa3732/
  52.  
  53. >
  54.  
  55. > Many thanks,
  56.  
  57. >
  58.  
  59. > Netcraft
  60.  
  61. >
  62.  
  63. > Phone: +44(0)1225 447500
  64.  
  65. > Fax: +44(0)1225 448600
  66.  
  67. > Netcraft Issue Number: 6628013
  68.  
  69. >
  70.  
  71. > To contact us about updates regarding this attack, please respond to this email. Please note: replies to this address will be logged, but aren't always read. If you believe you have received this email in error, or you require further support, please contact: takedown@netcraft.com.
  72.  
  73. >
  74.  
  75. > This mail can be parsed with x-arf tools. Visit http://www.xarf.org/ for more information about x-arf.
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!