Phishing - really !!

timconsidine

Just received abuse notices relating to 2 instances of Baserow. Really ?!

We previously contacted you about this issue on 2023-08-04 09:15:36 (UTC).
Since our last notification, the following additional URL(s) have been detected:

hxxps://baserow.domain[.]tld/login

Would it be possible to have the fraudulent content, and any other associated fraudulent content, taken down as soon as you are able to?

How on earth does baserow generate traffic that looks like phishing ?

No changes to Cloudron instance other than rebooting it. Or was there an automated upgrade ?

Really starting to get annoyed by these reports.

timconsidine

@timconsidine said in Phishing - really !!:

Just received abuse notices relating to 2 instances of Baserow. Really ?!

We previously contacted you about this issue on 2023-08-04 09:15:36 (UTC).
Since our last notification, the following additional URL(s) have been detected:

hxxps://baserow.domain[.]tld/login

Would it be possible to have the fraudulent content, and any other associated fraudulent content, taken down as soon as you are able to?

How on earth does baserow generate traffic that looks like phishing ?

No changes to Cloudron instance other than rebooting it. Or was there an automated upgrade ?

Really starting to get annoyed by these reports.

timconsidine

Maybe I have misunderstood
Hetzner (hosting provider of my Cloudron insurance) forwarded abuse notices from Netcraft.
Looks like Netcraft detected attempts to login to my baserow instance.
But …

• who are Netcraft, I don’t use them, why should they care
• why do I get an abuse notice ?! I didn’t do anything, why is it a concern when login fails ?

Confused why incident generated, why it should be an abuse, and how should I reply to Hetzner ?
“Sorry, someone tried to login but failed. Not man abuse. System is working as it should.”

girish

How is it an abuse report if login fails ?

timconsidine

@girish Yes ! Exactly !

humptydumpty

@timconsidine said in Phishing - really !!:

Cloudron insurance

Sign me up for one of those All jokes aside, this looks like it's going to waste a lot of your time. Take a look at this: https://www.reddit.com/r/hetzner/comments/13j381l/harassment_by_hetzner_abuse_team_possibly_ip/

timconsidine

@humptydumpty

Cloudron insurance

Oooops !
But quite funny
Apologies for the typo

Thanks for the link

timconsidine

Update in case it helps others.
I used the report a mistake button on Netcraft, which led to

Thank you for contacting us.

We have reviewed the site and agree that it was incorrectly identified as
phishing. We have now halted the takedown process and sent retraction 
messages to all parties contacted. We have also removed the site from 
our phishing blocklist.

Kind Regards

Jeez.