Nemo Me Impune Lacessit

Saturday, 25 May 2019

Another Phishing Attempt Upon Me

Filed under: Security, Technology — Tags: , , , — mikewb1971 @ 3:53 AM (03:53)

After logging into my ProtonMail account to send my latest to The Libertarian Enterprise, I noticed a bit of spam in my inbox there —

‐‐‐‐‐‐‐ Original Message ‐‐‐‐‐‐‐On Saturday, May 11, 2019 9:28 AM, Proton Team <MicrosoftS.Office.365-NotificatiSons-Noreplys@server102.hostwhitelaabel.com> wrote:

Mikewb1971

Your mikewb1971@protonmail.com will be removed in the next 24 hours as your device has been sending a shut down request to our internal server.

Take a verification if you think it’s just an error..

Let’s dissect the email address first — MicrosoftS.Office.365-NotificatiSons-Noreplys@server102.hostwhitelaabel.com

server102.hostwhitelaabel.com gives me nothing but an error message —

hostwhitelaabel.com also gives me an error message —

Back to the original message in my ProtonMail inbox —

The blue box marked “VERIFICATION NEEDED” links to https://tinyurl.com/y5st9lzr/, which in turn redirects to https://bitmex.global/css/proton/cmd-login=2d31d5c9d52dd9c521620c808d5558d4/0710dev14pfbr0fwwhw8x9dr.php?rand=13InboxLightaspxn.1774256418&fid.4.1252899642&fid=1&fav.1&rand.13InboxLight.aspxn.1774256418&fid.1252899642&fid.1&fav.1&email=&loginpage=&amp;.rand=13InboxLight.aspx?n=1774256418&fid=4#n=1252899642&fid=1&fav=1, a lookalike of the Protonmail login page

Typing “gofuckyourself” into the username field and random text into the password field somehow led me back to my Protonmail account (or a lookalike of it), so I couldn’t click the big “X” in the upper right-hand corner of that particular tab fast enough.

Going to bitmex.global revealed only a black screen saying

THIS DOMAIN IS FOR SALE

josephgasparello@protonmail.com

Maybe “Joseph Gasparello” should seek honest employment, instead of trying to phish my Protonmail account?

But too late — just changed my password (2:57 AM)


LESSONS TO BE LEARNED HERE

  1. NO, I do NOT have a sense of humor about someone messing about maliciously with me or mine. I DO reserve the right to have some malicious counter-fun with such people.
  2. ALWAYS check the address bar to make sure that the site you’re logging into actually IS the site you intend to log into — your credit rating, reputation and such will thank you for doing so.

NOTES

  1. Reposted –
    1. Personal blogs and micro-blogs – Diaspora* / Ello / Facebook / Gab / Minds / Twitter / VK

Advertisements

Blog at WordPress.com.

%d bloggers like this: