Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.


  • Categories
  • Recent
  • Tags
  • Popular
  • Bookmarks
Skins
  • Light
  • Cerulean
  • Cosmo
  • Flatly
  • Journal
  • Litera
  • Lumen
  • Lux
  • Materia
  • Minty
  • Morph
  • Pulse
  • Sandstone
  • Simplex
  • Sketchy
  • Spacelab
  • United
  • Yeti
  • Zephyr
  • Dark
  • Cyborg
  • Darkly
  • Quartz
  • Slate
  • Solar
  • Superhero
  • Vapor

  • Default (No Skin)
  • No Skin
Collapse

Cloudron Forum

Apps | Demo | Docs | Install

Phishing - really !!

Scheduled Pinned Locked Moved Baserow
8 Posts 3 Posters 167 Views
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • timconsidineT Offline
    timconsidineT Offline
    timconsidine App Dev
    wrote on last edited by
    #1

    Just received abuse notices relating to 2 instances of Baserow. Really ?!

    We previously contacted you about this issue on 2023-08-04 09:15:36 (UTC).
    Since our last notification, the following additional URL(s) have been detected:

    hxxps://baserow.domain[.]tld/login

    Would it be possible to have the fraudulent content, and any other associated fraudulent content, taken down as soon as you are able to?

    How on earth does baserow generate traffic that looks like phishing ?

    No changes to Cloudron instance other than rebooting it. Or was there an automated upgrade ?

    Really starting to get annoyed by these reports.

    timconsidineT 1 Reply Last reply
    0
  • timconsidineT Offline
    timconsidineT Offline
    timconsidine App Dev
    replied to timconsidine on last edited by
    #2

    @timconsidine said in Phishing - really !!:

    Just received abuse notices relating to 2 instances of Baserow. Really ?!

    We previously contacted you about this issue on 2023-08-04 09:15:36 (UTC).
    Since our last notification, the following additional URL(s) have been detected:

    hxxps://baserow.domain[.]tld/login

    Would it be possible to have the fraudulent content, and any other associated fraudulent content, taken down as soon as you are able to?

    How on earth does baserow generate traffic that looks like phishing ?

    No changes to Cloudron instance other than rebooting it. Or was there an automated upgrade ?

    Really starting to get annoyed by these reports.

    1 Reply Last reply
    0
  • timconsidineT Offline
    timconsidineT Offline
    timconsidine App Dev
    wrote on last edited by
    #3

    Maybe I have misunderstood
    Hetzner (hosting provider of my Cloudron insurance) forwarded abuse notices from Netcraft.
    Looks like Netcraft detected attempts to login to my baserow instance.
    But …

    • who are Netcraft, I don’t use them, why should they care
    • why do I get an abuse notice ?! I didn’t do anything, why is it a concern when login fails ?

    Confused why incident generated, why it should be an abuse, and how should I reply to Hetzner ?
    “Sorry, someone tried to login but failed. Not man abuse. System is working as it should.”

    humptydumptyH 1 Reply Last reply
    0
  • girishG Offline
    girishG Offline
    girish Staff
    wrote on last edited by
    #4

    How is it an abuse report if login fails 😖 ?

    timconsidineT 1 Reply Last reply
    0
  • timconsidineT Offline
    timconsidineT Offline
    timconsidine App Dev
    replied to girish on last edited by
    #5

    @girish Yes ! Exactly !

    1 Reply Last reply
    0
  • humptydumptyH Offline
    humptydumptyH Offline
    humptydumpty
    replied to timconsidine on last edited by
    #6

    @timconsidine said in Phishing - really !!:

    Cloudron insurance

    Sign me up for one of those 🙂 All jokes aside, this looks like it's going to waste a lot of your time. Take a look at this: https://www.reddit.com/r/hetzner/comments/13j381l/harassment_by_hetzner_abuse_team_possibly_ip/

    timconsidineT 1 Reply Last reply
    2
  • timconsidineT Offline
    timconsidineT Offline
    timconsidine App Dev
    replied to humptydumpty on last edited by
    #7

    @humptydumpty

    Cloudron insurance

    Oooops !
    But quite funny
    Apologies for the typo

    Thanks for the link

    1 Reply Last reply
    2
  • timconsidineT Offline
    timconsidineT Offline
    timconsidine App Dev
    wrote on last edited by timconsidine
    #8

    Update in case it helps others.
    I used the report a mistake button on Netcraft, which led to

    Thank you for contacting us.
    
    We have reviewed the site and agree that it was incorrectly identified as
    phishing. We have now halted the takedown process and sent retraction 
    messages to all parties contacted. We have also removed the site from 
    our phishing blocklist.
    
    Kind Regards
    

    Jeez.

    1 Reply Last reply
    5

  • Login

  • Don't have an account? Register

  • Login or register to search.
  • First post
    Last post
0
  • Categories
  • Recent
  • Tags
  • Popular
  • Bookmarks