Re: Phishing take down notices.

[Philip Webster <p.webster () GRIFFITH EDU AU>]

Using your local CERT is definitely an option worth discussing. I've also
generally had good responses and turn-arounds using the Netcraft toolbar.

Cheers
Phil

Philip Webster, IT Security Specialist, Griffith University



On Thu, Jun 22, 2017 at 5:11 AM, Ford, Bryan <bryan.ford () ndus edu> wrote:

> How are you reporting a takedown notice for a phishing site. Presently we
> have no standard for takedown notices. We will notify the Domain owner most
> times, but it seems to take them sometime to do it.
>
> I know there is phishing reporting sites for just about every vender out
> there. I tried Phishtank and the voting thing in my very novice view is
> clunky at best. Is anyone a member of APWG and a phishing reporter ?
>
> If so any wisdom on how it works. I see there a site in the APWG where you
> can report phishing but you also need the header information,  90 % of the
> time we don’t get when a user reports phishing.
>
> We have been playing with the Netcraft toolbar extension and like the end
> user ability to report phishing directly, but we are just evaluating it.  I
> am in the belief that most anti phishing venders
>
> use a feed from at least one organization to populate their databases.
> Forgive me if this has be addressed but I could not find anything in
> Educause on this subject.
>
>
>
> Sincerely
>
>
>
> Bryan
>
>
>
>
>
>
>
> Bryan Ford
>
> Information Security
>
> NORTH DAKOTA
>
> University System
>
> Core Technology Services
>
> 4349 James Ray Drive
>
> Grand Forks, ND 58203
>
>    701.777.6484 (o)
>
>    cts.ndus.edu