claranet Posted December 17, 2012 Posted December 17, 2012 Hello there, My name is Marc van Houtum and I'm from Claranet Benelux B.V. (AS8483). It seems that the server with the name beneasy.heliohost.org (64.62.211.131) is hosting an html copy of our webmail page for phishing purposes. The URL is http://beneasy.heliohost.org/claranetonlinejamenow/claranetonlinejamenow/ We've already null-routed the IP address of the server on our border routers but if would be great if you could have a look anyway. Thanks in advance.
Krydos Posted December 17, 2012 Posted December 17, 2012 Suspended. Here is the email address that the login information (if anyone fell for it) was being sent to oluchiglo2@postino.net
Recommended Posts