Viewing 2 posts - 1 through 2 (of 2 total)
  • Author
    Posts
  • #74970
    Hispasec Sistemas
    Guest

    This is Nicolás Moret from Hispasec Sistemas, an international IT security company.

    I’m contacting you because we have detected a phishing hosted on your servers.

    IP address: 151.139.128.10

    URLs:
    * hxxps://demo3.cloudwp.dev/trial-t76xyut8/wp-content/plugins/sa/

    The fraudulent page is trying to simulate an official banking website in order to steal passwords of online banking users.

    Proof of fraudulent activities:
    * https://www.virustotal.com/gui/url/ff485ae770d587b8682fc11a5beb4c63ac705024c3cbe2bf8297fa2509dfd2c9

    The official site(s) is(are):
    * caixabank.es

    Please, remove the fraudulent content as soon as possible. Thank you in advance.

    #75029
    Brandon C
    Keymaster

    Hi Hispasec Sistemas,

    I’m sorry to hear you’re dealing with this issue for our Cloud-Wp Services. We have an abuse hotline that you can reach out to report this concern and have it eradicated.

    After doing so we can reach back out to you with any updates. I hope this helps, please let us know if you have any other questions for us.

    Thank you

Viewing 2 posts - 1 through 2 (of 2 total)
  • The topic ‘Phishing report on CloudWP’ is closed to new replies.