Phishing and Malicious Domain Search Terms in the 3rd week of February

CIP Weekly Blacklist – Phishing or Malicious Domain Search Terms

* Clicking the link takes you to the CIP Search Result Page.

  • Instagram Phishing Site

hxxps://postingd[.]lntgrm-mages[.]com/

  • Webmail Phishing Site

hxxps://hatono[.]vn/wp-includes/main/login[.]htm

  • Postbank Phishing Site

hxxp://arsservicos[.]com[.]br/[.]well-known/-/5414f25/Login[.]php

  • Bimcell Phishing Site

hxxp://bimcellonline3d[.]com/

  • WhatsApp Phishing Site

hxxps://chat-whatsapp6875[.]resmi[.]bar/id/

  • WeTransfer Phishing Site

hxxp://www[.]kjmpartnership[.]com.au/wewatra/transferwetra/

  • M&T Bank Phishing Site

hxxps://eduplus[.]sch[.]ng/decline/payment/3[.]html

  • Microsoft Phishing Site

hxxp://ecm[.]coop.snocomb[.]com/?2F/1/24/202312:25%20AMTuesday,%20January%2024,%20202312:25:17%20AMecm[.]coop2F/

  • Crédit Agricole Phishing Site

hxxp://track[.]umbrellalocalpartnerships[.]com/AGRI3d/AGRI3/

  • Rakuten Phishing Site

hxxp://hamosaleemblog[.]com/tmp/rms/nid/loginfwdi