Recent searches
Search options
Business is good when your also on the supply side
@xssfox@cloudisland.nzPretty much every infosec person i know has given up reporting phishing sites because 99% of them are behind CloudFlare / CloudFlare domains. CloudFlare takes weeks to respond, will leak your info to the abusers and sometimes not even do anything.
@xssfox I don't bother reporting them, i bother trying to hack them.
@xssfox or atleast dropping big-list-of-naughty-strings.txt in their username and password fields.
@xssfox their acceptable use paragraph shows that hosting all of the most vile online from w malware to revenge porn is by design not by accident.
Honestly the world would be a better place if they just disappeared over night.
@xssfox personally, i'm still reporting them. Just not to Cloudflare. In my experience phishing-initiative.eu works okay-ish, and should show big red warnings in most browsers in their default configuration