Phishing take down notices.

["Ford, Bryan" <bryan.ford () NDUS EDU>]

How are you reporting a takedown notice for a phishing site. Presently we have no standard for takedown notices. We 
will notify the Domain owner most times, but it seems to take them sometime to do it.
I know there is phishing reporting sites for just about every vender out there. I tried Phishtank and the voting thing 
in my very novice view is clunky at best. Is anyone a member of APWG and a phishing reporter ?
If so any wisdom on how it works. I see there a site in the APWG where you can report phishing but you also need the 
header information,  90 % of the time we don't get when a user reports phishing.
We have been playing with the Netcraft toolbar extension and like the end user ability to report phishing directly, but 
we are just evaluating it.  I am in the belief that most anti phishing venders
use a feed from at least one organization to populate their databases.  Forgive me if this has be addressed but I could 
not find anything in Educause on this subject.

Sincerely

Bryan



Bryan Ford
Information Security
NORTH DAKOTA
University System
Core Technology Services
4349 James Ray Drive
Grand Forks, ND 58203
   701.777.6484 (o)
   cts.ndus.edu