Viewing 2 posts - 1 through 2 (of 2 total)
  • Author
    Posts
  • #77557
    Hispasec Sistemas
    Guest

    This is Nicolás Moret from Hispasec Sistemas, an international IT security company.

    I’m contacting you because we have detected a phishing hosted on your servers.

    IP address: 151.139.128.10

    URLs:
    * hxxps://demo3.cloudwp.dev/trial-7zt6z245/wp-content/plugins/se/

    The fraudulent page is trying to simulate an official banking website in order to steal passwords of online banking users.

    Proof of fraudulent activities:
    * https://www.virustotal.com/gui/url/b6ea4add64c5ef2e518efb1bb99a2b426eb4a834778cfba060f658ddea98d57d
    * https://www.virustotal.com/gui/ip-address/151.139.128.10

    The official site(s) is(are):
    * caixabank.es

    Please, remove the fraudulent content as soon as possible. Thank you in advance.

    #77717
    Brandon C
    Keymaster

    Hi Hispasec Sistemas,

    Thank for reaching out to report this Cloud WordPress concern. We have an Abuse Hotline that you can report this issue to directly and we will have it addressed immediately.

    We appreciate you for notifying us of this suspicious activity.

Viewing 2 posts - 1 through 2 (of 2 total)
  • The topic ‘[URGENT] Phishing hosted on your servers ( 151.139.128.10 – demo3.cloudwp.dev )’ is closed to new replies.