Hi List In the last couple of days we face an increasing amount of phishing sites hosted @ firebasestorage.googleapis.com targeting our customers.
They get taken down rather quickly when added to phishtank.com, but still they are valid for one or two days after reception, long enough for stup** customers to send in their credentials. *.googleapis.com is whitelisted so it won't get blacklisted by our RBL blacklist. Now I start to wonder, is this URI also being used in legitimate emails, or is it uniquely used in phishing emails and similar? I could manually add firebasestorage.googleapis.com to the blacklist which would have precedence over the wildcard whitelist entry. Mit freundlichen Grüssen -Benoît Panizzon- -- I m p r o W a r e A G - Leiter Commerce Kunden ______________________________________________________ Zurlindenstrasse 29 Tel +41 61 826 93 00 CH-4133 Pratteln Fax +41 61 826 93 01 Schweiz Web http://www.imp.ch ______________________________________________________ _______________________________________________ mailop mailing list mailop@mailop.org https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop
