Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.




2495 posts

Uber Geek
+1 received by user: 1521


# 251310 18-Jun-2019 16:26
Send private message quote this post

I got a phishing email with a fake ANZ banking website. I forwarded it to ANZ.

I also forwarded it to the domain provider, iwantmyname.com, who runs their office in Wellington. This was their response.

Regarding "We have notified the customer of the complaint," I assume the customer is the crooks. I only hope they removed my signature from my forwarded email.

Is the following response correct?

----------------------------------------

Hello,

Thanks for getting in touch about *********.co.nz. Unfortunately, there is not much we can do on our end regarding the content of a site under a domain name, even when registered with us.

We don't provide hosting, so no site content, email, etc. is hosted with us.

As a reseller of an ICANN accredited registrar, we are authorized to only suspend a domain name if we receive instructions by authorized parties (e.g. ICANN, domain name registries, or legal court orders). This usually only happens if a domain name infringes on the trademark or naming rights of a third party.

We have notified the customer of the complaint, and will forward any response within 48 hours.

Because the root of the issue is the site's content, rather than the domain itself, it would be advisable to address your complaint to the site's author, or to the applicable Internet Service Provider (hosting provider of the website itself, not the domain name registrar).

If you believe the content is of an illegal nature, you should contact an appropriate law enforcement agency (which will vary depending on jurisdiction), or consult an attorney for legal advice.

We often find that because domain names are inexpensive and can be registered quickly, closing the domain itself is only a temporary solution for eliminating content. The best fix here is to stop the content at the source.

If you have any other questions, let us know.
Cheers,
Cheers,

https://iwantmyname.com


View this topic in a long page with up to 500 replies per page Create new topic
 1 | 2
22259 posts

Uber Geek
+1 received by user: 4784

Trusted
Subscriber

  # 2260408 18-Jun-2019 16:49
Send private message quote this post

Would you like a registrar being able to suspend a domain because they dont like your content on the site?

 

The way it works is fine. Complain to the right place about it and they may get the domain pulled.





Richard rich.ms

3117 posts

Uber Geek
+1 received by user: 335

Subscriber

  # 2260409 18-Jun-2019 16:49
One person supports this post
Send private message quote this post

More than likely the person/business that own the domain name and website don't even know about it as their site has probably been hacked.

 

 


 
 
 
 




2495 posts

Uber Geek
+1 received by user: 1521


  # 2260414 18-Jun-2019 16:59
Send private message quote this post

The domain name was an intentional misspelling of ANZ, so if you weren't paying attention, you could be fooled.

I'm not a ANZ customer, so it was blindingly obvious to me.

The phishing email also said It said "Dear customer", without using my name.

Given how many times corporations like Equifax get their complete customer databases hacked, I wouldn't be surprised by a phisher knowing all my details.

I know there's a bunch of system admins out there who don't patch their public internet sites, get hacked, and have malicious code inserted, but this wasn't one of them.

14955 posts

Uber Geek
+1 received by user: 2046


  # 2260417 18-Jun-2019 17:03
One person supports this post
Send private message quote this post

Shouldn't you contact the DNC about any concerns? www.dnc.org.nz 

 

The thing about nz domains, is the domain registrant can transfer them instantly and free at any time between different providers, so the domain provider today, may not be the provider tomorrow..


BDFL - Memuneh
63874 posts

Uber Geek
+1 received by user: 14335

Administrator
Trusted
Geekzone
Lifetime subscriber

  # 2260419 18-Jun-2019 17:05
One person supports this post
Send private message quote this post

CYaBro:

 

More than likely the person/business that own the domain name and website don't even know about it as their site has probably been hacked.

 

 

This is a likely scenario.







2495 posts

Uber Geek
+1 received by user: 1521


  # 2260427 18-Jun-2019 17:34
Send private message quote this post

mattwnz:

Shouldn't you contact the DNC about any concerns? www.dnc.org.nz 


The thing about nz domains, is the domain registrant can transfer them instantly and free at any time between different providers, so the domain provider today, may not be the provider tomorrow..



When I read your post, I thought you were talking about the Democratic National Committee.

I couldn't find anything on the DNC website about phishing beyond repeated complaints by the New Zealand Bankers’ Association. Definitely couldn't find an abuse email address.

https://www.dnc.org.nz/node/1494

So besides forwarding it to the company being imitated, in this case ANZ, anything else I could do to be helpful?

perhaps Netsafe scam report???

https://report.netsafe.org.nz/hc/en-au/requests/new?ticket_form_id=360000024755

I keep imagining elderly victims getting conned.


22259 posts

Uber Geek
+1 received by user: 4784

Trusted
Subscriber

  # 2260428 18-Jun-2019 17:37
One person supports this post
Send private message quote this post

I'd tell cert too. They have a reporting tool which isnt _too_ annoying to use for things.





Richard rich.ms

 
 
 
 


2740 posts

Uber Geek
+1 received by user: 1246

Trusted
Lifetime subscriber

  # 2260429 18-Jun-2019 17:42
One person supports this post
Send private message quote this post

Bet you anything they are hosted behind Cloudflare too, and don't bother reporting to Cloudflare's abuse as they will just forward all your details to the site and absolve themselves of any responsibility.






3117 posts

Uber Geek
+1 received by user: 335

Subscriber

  # 2260547 18-Jun-2019 22:12
3 people support this post
Send private message quote this post

BarTender:

 

Bet you anything they are hosted behind Cloudflare too, and don't bother reporting to Cloudflare's abuse as they will just forward all your details to the site and absolve themselves of any responsibility.

 

 

 

 

And so they should. They're not the internet police.


Mr Snotty
8728 posts

Uber Geek
+1 received by user: 4635

Moderator
Trusted
Lifetime subscriber

  # 2260551 18-Jun-2019 22:35
One person supports this post
Send private message quote this post

With Phishing, the best thing to do is ignore and forward the email (including headers) to the bank in question. ANZ have a dedicated page for this here: https://www.anz.co.nz/banking-with-anz/banking-safely/stay-up-to-date/

 

I know most banks have a team that both looks out for phishing scams, and also closes them down ASAP. Normally what I do if I come across one is report the phishing page to Google (https://safebrowsing.google.com/safebrowsing/report_phish/?hl=en) then just forward it to the bank (if I can actually be bothered), delete, job done.

 

The problem with both domain providers, Cloudflare etc is they will forward your email to the abuse contact or account email address of the domain. This isn't too helpful as it can either target you for Spam, inform the site owners that you're onto them or even get you doxxed. This is the standard response for most infrastructure providers (I get many of these sorts of emails across my domains - most are automated). I don't advise anyone to do that.





372 posts

Ultimate Geek
+1 received by user: 57


  # 2260613 19-Jun-2019 01:39
One person supports this post
Send private message quote this post

 iwantmyname.com can do something its on there  t/c

 

https://iwantmyname.com/terms

 

 

 

3.1 Immediate suspension or termination

 

d.if you have acquired a Registered Name or used any Service through fraudulent means or for any fraudulent or illegal purpose.

 

 




2495 posts

Uber Geek
+1 received by user: 1521


  # 2260628 19-Jun-2019 07:07
Send private message quote this post

michaelmurfy: ... report the phishing page to Google (https://safebrowsing.google.com/safebrowsing/report_phish/?hl=en)...


I didn't know about the google page. Cheers

2740 posts

Uber Geek
+1 received by user: 1246

Trusted
Lifetime subscriber

  # 2260652 19-Jun-2019 08:36
Send private message quote this post

CYaBro:

 

BarTender:

 

Bet you anything they are hosted behind Cloudflare too, and don't bother reporting to Cloudflare's abuse as they will just forward all your details to the site and absolve themselves of any responsibility.

 

 

And so they should. They're not the internet police.

 

 

Any yet having an acceptable use policy and actually enforcing it is some sort of affront to the "free speech" of the internet. The terrorists and revenge porn sites fully agree with you.






3117 posts

Uber Geek
+1 received by user: 335

Subscriber

  # 2260958 19-Jun-2019 16:06
One person supports this post
Send private message quote this post

BarTender:

 

CYaBro:

 

BarTender:

 

Bet you anything they are hosted behind Cloudflare too, and don't bother reporting to Cloudflare's abuse as they will just forward all your details to the site and absolve themselves of any responsibility.

 

 

And so they should. They're not the internet police.

 

 

Any yet having an acceptable use policy and actually enforcing it is some sort of affront to the "free speech" of the internet. The terrorists and revenge porn sites fully agree with you.

 

 

There are proper channels to go through to get illegal sites taken down.


2740 posts

Uber Geek
+1 received by user: 1246

Trusted
Lifetime subscriber

  # 2260967 19-Jun-2019 16:43
One person supports this post
Send private message quote this post

CYaBro:

 

BarTender:

 

CYaBro:

 

BarTender:

 

Bet you anything they are hosted behind Cloudflare too, and don't bother reporting to Cloudflare's abuse as they will just forward all your details to the site and absolve themselves of any responsibility.

 

 

And so they should. They're not the internet police.

 

 

Any yet having an acceptable use policy and actually enforcing it is some sort of affront to the "free speech" of the internet. The terrorists and revenge porn sites fully agree with you.

 

 

There are proper channels to go through to get illegal sites taken down.

 

 

Yes, and those channels via Cloudflare involve your information begin forwarded to the provider and often being doxed. What is illegal in one country may not be in another.

 

And again, you are in good company with the terrorists and revenge porn sites, they want free speech too and don't want Cloudflare to be the internet police.






 1 | 2
View this topic in a long page with up to 500 replies per page Create new topic



Twitter and LinkedIn »



Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Dunedin selects Telensa to deliver smart street lighting for 15,000 LEDs
Posted 18-Jul-2019 10:21


Sprint announces a connected wallet card with built-in IoT support
Posted 18-Jul-2019 08:36


Educational tool developed at Otago makes international launch
Posted 17-Jul-2019 21:57


Symantec introduces cloud access security solution
Posted 17-Jul-2019 21:48


New Zealand government unveils new digital service to make business easier
Posted 16-Jul-2019 17:35


Scientists unveil image of quantum entanglement
Posted 13-Jul-2019 06:00


Hackers to be challenged at University of Waikato
Posted 12-Jul-2019 21:34


OPPO Reno Z now available in New Zealand
Posted 12-Jul-2019 21:28


Sony introduces WF-1000XM3 wireless headphones with noise cancellation
Posted 8-Jul-2019 16:56


Xero announces new smarter tools, push into the North American market
Posted 19-Jun-2019 17:20


New report by Unisys shows New Zealanders want action by social platform companies and police to monitor social media sites
Posted 19-Jun-2019 17:09


ASB adds Google Pay option to contactless payments
Posted 19-Jun-2019 17:05


New Zealand PC Market declines on the back of high channel inventory, IDC reports
Posted 18-Jun-2019 17:35


Air New Zealand uses drones to inspect aircraft
Posted 17-Jun-2019 15:39


TCL Electronics launches its first-ever 8K TV
Posted 17-Jun-2019 15:18



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.