- May 25, 2020
- 284
When I visit https://aufepts.top/, I get redirected to auspost.com.au, which is the legit Australia Post website.It's been weeks. Still not detected.
Same here, Avast dont detect it as a phising page too. So probably al false positive from TS.When I visit https://aufepts.top/, I get redirected to auspost.com.au, which is the legit Australia Post website.
Before the final redirect to the real AusPost website it puts a fake cookie with a type/extension mismatch in your browser's cache that looks like a real AusPost cookie. It was only doing it with Chrome.When I visit https://aufepts.top/, I get redirected to auspost.com.au, which is the legit Australia Post website.
That's what I'm interested in. I want to see where the reporting has broken down. Why can't I report their certificate authority or their host? Nothing works?Now a million dollar question, what is your purpose? Those webpages exist for a reason, to scam people, if they mistype an address.
Trying to report a fake webpage hosted on top, xyz or whatever TLD is pointless, they are designed to last for this purpose alone.
Certificate authority only verifies the authenticity of the webpage, it is not designed to handle malicious reports otherwise many "free" webpages would be shut down as the result.Why can't I report their certificate authority or their host? Nothing works?
The TLDs that distribute malware the most are.ga,.xyz,.cf,,tk,.org, and.ml. Phishing actors prefer to use.net domains, with.pw,.top,.ga, and.icu, following with notable volumes.