Phishing Attack

PeterTheGreat · January 3, 2021, 1:19am

Hello, my dad was a victim of a phishing attack from someone using your service. The website imitates a facebook login and takes users’ email and password. The website is: http://curious-intelligent-jackal.glitch.me/#0.2585748876852967

RiversideRocks · January 3, 2021, 2:12am

Hello, you should report this to support@glitch.com.

MCPE2019Github · January 3, 2021, 2:14am

i just literally put fake credentials
ha
(a little suggestion to everyone
put fake credentials before logging in)

RiversideRocks · January 3, 2021, 2:17am

Don’t worry, I’m sending them a few hundred fake passwords.

RiversideRocks · January 3, 2021, 2:19am

Did some looking it, it sends the data this a .ml site. You should also report this to Freenom.

javaarchive · January 3, 2021, 2:27am

lemme try this

I hope they don’t have xss protection on

RiversideRocks · January 3, 2021, 2:29am

while [ true ]
do
curl 'https://facebook2929.ml/klksan/save.php?api=1&lan=facebooknew&ht=1' -H 'User-Agent: you are dumb lol' -H 'Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8' -H 'Accept-Language: en-US,en;q=0.5' --compressed -H 'Content-Type: application/x-www-form-urlencoded' -H 'Origin: https://curious-intelligent-jackal.glitch.me' -H 'DNT: 1' -H 'Connection: keep-alive' -H 'Referer: https://c
urious-intelligent-jackal.glitch.me/' -H 'Cookie: PHPSESSID=4d2435fdht855e9c1' -H 'Upgrade-Insecure-Requests: 1' -H 'TE: Trailers' --data-raw 'ua=&state=Conn
ecticut&username=lluviaco_klksan&email=sdjkfhjsdfhksdjfkdsfhkjhsdjkfhdsjkfsdkjfhdjskfhsdkjfhsdkjfhksdjfhkjsdhfkjsdh&pass=sdef&login=Log+In&country=United+States&Country=United+States&pais=United+States&Pais=United+States'
echo another
done

MCPE2019Github · January 3, 2021, 2:34am

niceeeeeeeee
i just realized something
i gave them my email
WHOOPS
i dont have facebook

RiversideRocks · January 3, 2021, 2:36am

Probably nearing 1000

PeterTheGreat · January 3, 2021, 2:39am

I reported the glitch.me website to support[at]glitch[dot]com and reported the facebook2929.ml website (with context of the phishing operation on the glitch.me website) to abuse[at]freenom[dot]com. Thanks for the help

RiversideRocks · January 3, 2021, 2:40am

Nice! If you want to go even further you can always contact the host of the facebook ml website:

PeterTheGreat · January 3, 2021, 2:43am

Reported to soporte@sered.net, in English though, lol

RiversideRocks · January 3, 2021, 2:07pm

Just want to give an update, the host seems to have banned the facebook ml website:

(thanks for letting me know @EddiesTech)

MCPE2019Github · January 3, 2021, 7:17pm

good
now no one gets scammed on this website

BLOXCaster · January 3, 2021, 7:42pm

This is against the law to phish.
I reported it to glitch using the “Report abuse” feature.
They’re also leaking IPs in the source.

chessebuilderman · January 3, 2021, 8:01pm

That actually depends on what you are phishing.

wh0 · January 4, 2021, 12:24am

could you describe that

MCPE2019Github · January 4, 2021, 1:09am

could you explain that

EddiesTech · January 4, 2021, 1:18am

Hi @wh0 and @MCPE2019Github
I think @chessebuilderman meant that there is no particular law that covers phishing in the US but others can apply to it

Rider-Dooble · January 7, 2021, 7:58pm

Facebook has more sophisticated code than this,and would never ask for your email only