Help prevent phishing26
Hello, quite a while since my last post, this is a “public service announcement” on the issue of phishing. We are, by no means, the only effected site out there, almost all other sites that allow comments are effected by phishing. However it looks like we’re winning the fight. We try our best to prevent phishing but we can only do so much, we need your help to improve and alert us. The main issues are:
Link protectors/maskers/hiders:
Link protectors DO NOT WORK. They do not protect links at all. All they do is cause extra work for us, and hinder people trying to use the links. Most link protectors/maskers/hiders/shorteners are added to the moderation list to try to prevent this type of phishing, however we have to constantly update the list to keep it as up to date as possible. If you spot any link protector site or similar service that isnt moderated, please message me on IRC or drop me an email: untamed@zerosec.ws
Similar looking domains:
These aren’t very common due to the fact the domains get blacklisted very quickly and it’s usually just a waste of money for the phisher. Double and triple check all links that ask for your password. For rapidshare make sure you have enabled the security lock, and your rapidshare and email password is different. If you spot a phishing domain that isn’t blacklisted please contact me or a member of staff asap.
Phishers who are caught are IP banned, and their links added to the blacklist. We’re always trying to improve security for our visitors, if you have any reports on phishing or similar feel free to contact me.
February 11th, 2009 at 5:57 am
Ross Kemp approves this message from Brookly, NY.
February 11th, 2009 at 6:05 am
Untamed + the rest of the Zerosec crew
appreciated… Rapidshare owner
thanks 4 taking care of ur community by doing all of this
February 11th, 2009 at 6:19 am
I’ve seen quite a few phishing links, but I have quoted the message and shown users that it was indeed a phishing link, and provided the full exposed URL.
Nice.
February 11th, 2009 at 6:21 am
As a victim myself…thanks for doing this!
February 11th, 2009 at 6:26 am
Very Good Work
Thanks For All Stuff
February 11th, 2009 at 6:30 am
i realise that maintaining this site is full time but, is there any chance of maybe getting a report button attached to all posts? this way it would be easier for you guys to moderate cause us users would let you know what posts are BS.
eg. all reported posts would go into a pool that only mods/admin could access and from there check out what the post contains and take action as required.
probably hard to implement but would work i reckon
February 11th, 2009 at 6:32 am
@ 6 (rs): I’m looking into things like comment rating (like youtube) or a report system like you said, I doubt anything like that will happen soon but it may well do in the nearish future.
February 11th, 2009 at 6:32 am
Yet another reason to use nzb’s and newsgroups instead. I dont need to worry about my account getting stolen from there.
February 11th, 2009 at 6:58 am
Good stuff. Along with a bit of common sense, no one will need to be a problem where they get phised. Remember to lock your RS account, keep payment details, and use a different password and usernames. for your 1-click hosting.
February 11th, 2009 at 7:07 am
i no wanna get phished.
thanx 4 at the least being aware this problem is around.
February 11th, 2009 at 8:14 am
@8 mark
If you use an external DL manager for RS (is there anyone who downloads those dozens of links by hand anyways?) you can’t get phished either …
February 11th, 2009 at 10:01 am
One of the other sites I visit has started to use http://fdnlinks.com/ to protect their links, no passwords are asked for and it appears to be OK, you need adobe flash installed to see the d/l window, and need pop-up blockers turned off on that site (otherwise adobe flash doesn’t work), maybe ZeroSec posters could standardise then phishers will be spotted immediately. Anybody else agree with using only one link protecting site?
February 11th, 2009 at 10:03 am
I would see dsomeone use megashareslink.com and I thought that was suspect because I didn’t see the point of doing that for megashares links. 6 has a good idea.
February 11th, 2009 at 10:04 am
someone*
February 11th, 2009 at 10:07 am
Thanks ZeroSec!
You have to be one of the most dedicated sites that I have visited
February 11th, 2009 at 10:17 am
USE Mozila Fire Firefox!
February 11th, 2009 at 10:20 am
@ 12 (Dilligaf): Link protectors dont work. It’s very easy to find out the real link so theres no point in anyone using any link protect service (other than a phisher).
February 11th, 2009 at 10:30 am
you might want to look at this wordpress plugin:
http://www.dagondesign.com/articles/report-comments-plugin-for-wordpress/
February 11th, 2009 at 11:43 am
I am an uploader and a mod on a site , and we have alot of problems with phishers too… What i personally do, is as the site rules say, no link protectors AT ALL. So i copy the links , then delete the post , visit the links , find the true URL , find the host and report it, As phishing is illegal as they are stealing information. I think you guys here do a great job at preventing this, and i hope you report all the sites to the host. Ripway seems to be the most common to me…
I dont know if you currently do this but could you block linkbuck links etc.. and their thousand URLs.
February 11th, 2009 at 1:29 pm
@ untamed:
The thing is about linksafe and some others, they may not provide protection, but they sometimes provide containers, which makes it all worth.
Even though JDownloader is the Downloading Tool of my choice and it’s able to batchload and decrypt all those "link- securing" sites a container is always a cool thing.
Just saying.
February 12th, 2009 at 2:30 am
*don’t like Jdownloader* just sayin’
February 12th, 2009 at 3:36 am
Yeah you guys are awesome, you’ve done well with zerosec!
February 12th, 2009 at 9:57 am
Untamed you sexy beast!
February 12th, 2009 at 11:11 am
Another thing I wanted to say is the amount of users who split archives up, I see it pointless sharing with others 10-20 rapidshare links and such, for a TV program thats only 350MB
I find it frustrating. I don’t mind downloading off rapidshare but I dont want to download all those parts.
People are seriously attempting to milk the system there!
I love single links, but I can’t stand people who put those same 350MB episodes into megashare links where the user has to get new a "passport" every 250MB! grr I can’t stand that!
I think that needs to looked at sometime aswell, users who post up 10-20 part download links for small downloads, dont mind if its a 1GB+ file but why? why? does it have to be with tv episodes?!
February 13th, 2009 at 11:12 am
In my experience, I’ve found that for finding older stuff, link protectors do work.. I almost always gotten my files from protected (especially timed) links.
January 19th, 2010 at 3:23 am
Well I know for a fact this new pop up with the phone number texting is annoying. I sent an email the other day about it and hopefully it gets resolved soon.
I suggest more people report it & any other problems of the site. We need developers and hosts know what’s going on to prevent malicious losers out there.