Description
sadly someone is using the service to expose malware, the only possible solution for me is to terminate ejemplo.me, you can still expose your own server using readme tutorial.
[PL-2738190] Phishing attack(s) hosted on: trending.ejemplo.me During an investigation of fraud, we discovered a compromised website (trending.ejemplo.me) that is being used to attack our client and their customers. In addition to the website owner, we have addressed this report to the responsible authoritative providers who have the ability to disable the malicious content in question. Based on your relationship to the content in question, please see our specific request below. This threat has been active for at least 0.4 hours. http://trending.ejemplo.me/login.html http://trending.ejemplo.me/ First detection of malicious activity: 12-06-2021 20:17:12 UTC Most recent observation of malicious activity: 12-06-2021 20:40:54 UTC Associated IP Addresses: 51.15.103.235 === HOSTING PROVIDER === If you agree that this is malicious, we kindly request that you take steps to have the content removed as soon as possible. It is highly likely that the intruder who set up this phishing content has also left additional fraudulent material on this server such as illegitimate access points. === WEBSITE OWNER === We recommend taking the following actions to secure the web site and prevent the attackers from returning: - Update your web applications including CMS, blog, ecommerce, and other applications (and all add-on modules/components/plugins). - Search all of your web directories for suspicious files as attackers commonly leave backdoors. - Scan the computer from which you login to your web hosting control panel or ftp server with anti-virus software. - Change your web hosting provider if this is an ongoing issue. If your provider has disabled your account because of this incident, you must coordinate a resolution with them directly as PhishLabs has no control over this aspect. If we have contacted you in error, or if there is a better way for us to report this incident, please let us know so that we may continue our investigation. We are grateful for your assistance. Kind regards, SOC Team PhishLabs Security Operations 12023866001 Available 24/7 [PL-2738190]