GoFuckYourself.com - Adult Webmaster Forum

- Fucking Around & Business Discussion (https://gfy.com/forumdisplay.php?f=26)

- - Epassporte phishing (https://gfy.com/showthread.php?t=767111)

Epassporte phishing

Just a heads up, getting email for:
hrubieszow.kppsp.gov.pl/uploads/news/new/epassporte/

masqueraded as a secure.epassporte login link.

hotlinking from pokerstars.com/graphics/epassporte.gif

Code:

Received: by 10.65.147.11 with SMTP id z11cs74416qbn;

        Sat, 8 Sep 2007 17:48:13 -0700 (PDT)

Received: by 10.141.28.12 with SMTP id f12mr1323259rvj.1189298891875;

        Sat, 08 Sep 2007 17:48:11 -0700 (PDT)

Return-Path: <[email protected]>

Received: from eforward1.name-services.com (eforward1.name-services.com [69.25.142.2])

        by mx.google.com with ESMTP id l27si4647610rvb.2007.09.08.17.48.11;

        Sat, 08 Sep 2007 17:48:11 -0700 (PDT)

Received-SPF: error  (google.com: error in processing during lookup of [email protected]: DNS timeout) client-ip=69.25.142.2;

Authentication-Results: mx.google.com; spf=temperror [email protected]

Received: from c9mailgw26.amadis.com ([216.163.188.208]) by eforward1.name-services.com with Microsoft SMTPSVC(6.0.3790.3959);

         Sat, 8 Sep 2007 17:48:52 -0700

Received: from indirimlihost.net (unknown [212.175.24.66])

        by c9mailgw26.amadis.com (Postfix) with ESMTP id C3A876268BB

        for <[email protected]>; Sat,  8 Sep 2007 17:48:04 -0700 (PDT)

Received: from apache by indirimlihost.net with local (Exim 4.60)

        (envelope-from <[email protected]>)

        id 1IUA3q-0002lY-Qo

        for [email protected]; Sun, 09 Sep 2007 02:49:58 +0300

Content of the message says:

Quote:

Dear valued epassporte� member:

It has come to our attention that your epassporte� account informations needs to be
updated as part of our continuing commitment to protect your account and to
reduce the instance of fraud on our website. If you could please take 5-10 minutes
out of your online experience and update your personal records you will not run into
any future problems with the online service.

However, failure to update your records will result in account suspension.
Please update your records on or before sept 11, 2007.

you are requested to update your account informations at the following link.

https://secure. epassporte. com/login_update_done=1115487

*Important*
We have asked few additional information which is going to be the part of secure login process. These additional information will be asked during your future login security so, please provide all these info completely and correctly otherwise due to security reasons we may have to close your account temporarily.

Been getting them as well. Oddly though only to the email address that I have an epass account with.

i don't think those people would get more enough on epass. i just noticed lately that epass would reject your logins if you are using different IPs or using proxy..

Quote:

Originally Posted by After Shock Media (Post 13061574)

Been getting them as well. Oddly though only to the email address that I have an epass account with.

:eyecrazy :eyecrazy

i don't think epassporte sends out emails outside their system do they?

Quote:

Originally Posted by Jace (Post 13061632)

i don't think epassporte sends out emails outside their system do they?

Nope do not think so unless you have it email you when you get a transaction. I did not set that part up.

I just found it odd that I have a few email addresses yet only 1 tied to epass and that is the only one I am getting the phising sent to. Anyone else getting them to random emails or just to your main epass email?

For what it's worth, mine went to a different email address and not the contact info that I use with Epass.

Classic phishing for the fools ...

The url where the scam is hosted is offcial homepage of a local fire brigade in a small town in Poland... Looks like their site was hacked if you go to the root url...

Dirtbags. The only phish I like is the band PHISH.

I don't think phishers are going to have any success with ePassporte, mainly for two reasons .. first, epass is used by much smaller number of people as compared to paypal (top target of phishers?). Second, epass is mostly used by webmasters, which are the people with at least some sense.

Every rule needs an exception, so some dumb webmasters can still fall in this ;)

Yep, I got a couple of those too.

Thanks for the info, I haven't got one at last until now

I love phising I caught a big brown trout over the weekend

Epass has messages all over the page saying that they will never send you a mail, however, what they do send is a mail informing you that there's a message waiting for you at their message center. This is the mail they send you:

Dear -USER-

ePassporte has sent you a message regarding your account.
For security purposes, please log into your ePassporte account and click on the Message Center tab to retrieve this secure message.

Thank You

ePassporte.com

Quote:

Originally Posted by Vick! (Post 13064551)

ePassporte is a pretty popular payment method amongst online gamblers.

Quote:

Originally Posted by Vick! (Post 13064551)

Oh shit i replied and did what they said :1orglaugh
Seriously, how the fuck would someone fall for this !
Geeeeeeeee, the first thing i do when i get those kind of emails is to look closely at the REAL url (copy/paste without hitting enter in a browser)

http://epassporte.dumbass.securelogi...lshoesinstead/
Then i'm sure it's ok

Seems to be a lot of this going on today.

Yeah been getting them too. Forwarding them to Epassporte didn't even get as much as a reply from them and that was over a month ago. I only have 1 email address linked to my Epassporte account and that's the only one I'm getting these phishing messages at. Strange that that would happen, unless it's an inside job.....

Quote:

Originally Posted by Brujah (Post 13062970)

For what it's worth, mine went to a different email address and not the contact info that I use with Epass.

Mine was come to mail which was listed only on gfy.