Security Basics mailing list archives
Compromised phishing host notification
From: "Colin Bean" <ccbean () gmail com>
Date: Thu, 27 Apr 2006 09:37:22 -0700
Hi all, I had a question about notifying the owners of a site that appears to be compromised and hosting a phishing page. For instance, I received a phishing mail today which linked to something like http://www.domain.com/.www.creditunion.com/login.php where www.domain.com was a small business here in the US. Are there any common guidelines to notify the domain owners in a situation like this, assuming I wanted to send them a friendly notice and have no further involvement? Would there be any possible legal issues from a casual email, and would this be an effective way to deal with the site? What about a service like CastleCorps PIRT? (http://www.castlecops.com/pirt) Is this more effective? Thanks, Colin ------------------------------------------------------------------------- This List Sponsored by: Webroot Don't leave your confidential company and customer records un-protected. Try Webroot's Spy Sweeper Enterprise(TM) for 30 days for FREE with no obligation. See why so many companies trust Spy Sweeper Enterprise to eradicate spyware from their networks. FREE 30-Day Trial of Spy Sweeper Enterprise http://www.webroot.com/forms/enterprise_lead.php --------------------------------------------------------------------------
Current thread:
- Compromised phishing host notification Colin Bean (Apr 28)