Nu ești autentificat.

#1 2009-11-07 20:50:12

Marcel
Owner
Din: Cluj-Napoca
Data înregistrării: 2005-01-28
Mesaje: 2.126
Website

Atentie la ce gazduiti

Aplicatiile populare intotdeauna au dezavantajul de a fi tinte atacurilor "oamenilor rai". La fel si Wordpress, care l-am avut instalat pe site pentru a testa anumite chestii. Dar am uitat de el si cineva i-a facut felul si joi am primit urmatorul mesaj... (cine nu intelege mesajul, e vorba de un cod malitios care a fost instalat langa codul sursa al Wordpressului, cod care imita perfect o pagina Visa Inc pentru a induce in eroare vizitatoriil).

Dear marcelbeldean.com Team

It appears that your website www.marcelbeldean.com  has been hacked by a fraudster. It is now hosting a phishing attack against Visa Inc.
Please remove the fraudulent folders/files as soon as possible and secure your website as it has been compromised.
http://blogs.marcelbeldean.com/Verified … ff80d54641
In addition, please send us any source files of the attack.
Please let us know if you have any questions or need further assistance. We appreciate your cooperation.

RSA Anti-Fraud Command Center
RSA, The Security Division of EMC


Dear Sirs:
RSA, an anti-fraud and security company, is under contract to assist Visa Inc. and its related entities in preventing or terminating online activity that targets potential fraud victims.  RSA has been made aware that Peer 1 appear to be providing Internet Services to a fraudulent Web site, which is part of a "phishing scam"*.

E-mail messages have been broadly distributed to individuals by a person or entity pretending to be Visa.  The e-mails request recipients to verify and submit sensitive details related to a cardholder’s account. Within the fraudulent e-mail message, there is a link that leads the recipients to a fraudulent website.  The fraudulent website is located at the following URL address http://blogs.marcelbeldean.com/Verified … a13c0db1f1 to which you provide services and which is under your control.

The purpose of this fraudulent website is to improperly obtain personal information from cardholders in order to fraudulently access their online accounts.  The owners of those websites typically perpetrate identity-theft related activities, such as using a cardholder's credit card or online account without authorization.  In addition, these unlawful actions serve to damage the reputation and image of Visa.

We are recommending that you investigate this website as soon as possible.  In order to protect innocent visitors to the site from being misled or injured, we request that you immediately remove the pages located on that machine (not available) terminate its availability on the Internet and discontinue the transmission of any e-mails associated with this website.

In addition to these necessary steps, Visa would like you to set up a redirect to the Anti Phishing Working Group (APWG) Phishing Education Landing Page at http://education.apwg.org/r/en instead of serving a 404 message or other error page when you disable a phish site. The APWG Public Education Initiative (PEI) has created a webpage to educate users about phishing. The page specifically explains that they have just fallen for a phishing communication (email or otherwise) and talks about ways they can avoid being victimized in the future. If you wish to learn more about how to set up the redirect, please read here: http://education.apwg.org/r/how_to.html.

We would also request that you sequester any data related to this site for future investigation or handling as directed by law enforcement.  This would include files, source code, and any data stored that is associated with it. It would also include any log entries of access to the server for the site, connections to upload or download data to the site, or records of the account being created.

We understand that you may not be aware of this improper use of your services and we appreciate your cooperation.

Thank you for your cooperation to prevent and terminate this fraudulent activity.

Sincerely,

RSA Anti Fraud Command Centre                Visa Inc. Global Compliance

Tel: +44(0)800-032-7751 (UK)                           Tel.:     +1 (650) 432-4574 (USA)
Tel: +1-866-408-7525 (US)                               E-mail:  [email protected]
Fax: +972-9-9566658 (EU)                             
Fax: +1-212-208-4644 (US)                             
E-mail: [email protected]                       
56
*"Phishing" is an e-mail scam that attempts to trick consumers into revealing personal information, such as their credit or debit account numbers, checking account information, Social Security Numbers, online account passwords, or other identifying information, through an imposter's Web site or in a reply e-mail.


Pana la urma nu e chiar asa grav daca vorbesti cu dulapul. Mai rau e cand si dulapul vorbeste cu tine.

Deconectat

Subsol forum