phishtank.com — David Ulevitch et al launched PhishTank this morning. PhishTank is an open community and database of known phishing sites, accessible via kickass API. Users can verify submitted phishing sites and grin as they slowly kill off every last phisher...
Oct 2, 2006 View in Crawl 4
pencoydOct 2, 2006
That is the end goal. Right now, as listed in the FAQ, PhishTank is one source among many for OpenDNS. A verified phish on PhishTank will be reviewed for blocking by OpenDNS, absolutely, but it's (deliberately) not yet automated.JohnOpenDNS
Closed AccountOct 2, 2006
So you're the person that did that. It's up there, just hasn't been validated yet. Why would you try to lessen the credibility of a site that is trying to do us all a favor?
coopjustOct 2, 2006
Very genuine looking site.I spent 2 minutes entering info on that site. Not real of course. Rather than the usual "f**k you" I filled out info on a "Robert J Houser" in Springfield, MA. Of course, he's fictional, just like the Amex card and CCV number.
seventoesOct 3, 2006
Just wait then, thats what im doing. ;)
gheideOct 3, 2006
It would be really great to have a "DIGG EFFECT" type of Phish scam killing system... everybody signed up would have a toolbar and it would actively update it's phishing list and try various DOS attacks on those sites... only problem with that - a lot of phishing pages are hosted on hacked / insecure servers that the unknowing owner may not even know about - and it would bring that server down...
ilgazOct 3, 2006
I checked my Yahoo bulk folder (great source!) and you can be shocked that there are 6-7 days old phishing mails with VALID/ONLINE "sites" which are still working.Also it is not a good idea to fool around with a phishing/scam site. If there is a browser security problem, they are the ones who will exploit it.They have very secure "screenshot" function there, it should be used instead.
ilgazOct 3, 2006
I am sure Bank Of America/Paypal security admins, staff got an account there and watching those phish submissions.That is a free treasure for them. It could be a publicity nightmare for them too. It is their choice. I am turkish and I keep reporting Bank Of America or other banks scams to Spamcop and these new people. I hate those thieves, that is why ;)
ilgazOct 3, 2006
Careful about blogs, I am using antispam/reporting software and I have found at least 20 fake entries by spammers in the softwares comments area on download sites which allows commenting.At one point I wondered if I am using some other software rather than the title having some "nightmare" bugs, it took a while to figure those people aren't users of software, they registered to site just to give it a bad name. Software was working great, that was their problem ;)
vaamyobOct 3, 2006
"only problem with that - a lot of phishing pages are hosted on hacked / insecure servers that the unknowing owner may not even know about - and it would bring that server down..."I don't see a problem. I think compromised servers should be taken down.