There are many online web services that will host web forms that you create. These forms can be used for many purposes including phishing for passwords. All of the services have appropriate use terms that prohibit making phishing forms, but none can effectively prevent those forms. They rely on user complaints to alert the service administrator of the abuse. A phisher can often collect enough passwords before a complaint gets processed.
These are the form services that we watch for, and their abuse contact addresses:
| Web Form Hosting Site | Abuse complaint Address |
| *.1eko.com | support@1ek0.zendesk.com ? or http://freehosting.zendesk.com/anonymous_requests/new# |
| *.2urweb.net | http://hostwitch.com/contact.html |
| *.allalla.com | http://www.1freehosting.com/hosting-support.html |
| *.atwebpages.com | abuse@supportindeed.com |
| *.bravesites.com | abuse@jigsy.com |
| *.bugs3.com | support@serversfree.com |
| .byethost.com | support@byethost.com |
| .cabanova.com | www.cabanova.com/help/en/Tickets/Submit or maybe call +49(0)211.9945.9025 |
| *.coffeecup.com | abuse@coffeecup.com (or scott@coffeecup or snorvell@coffeecup) |
| .contactme.com/ | support@contactme.com or http://contactme.zendesk.com/anonymous_requests/new |
| *.dasfree.com | info@1-to-1.org.uk |
| *.dudaone.com | notifications-support@dudamobile.zendesk.com |
| .formbuddy.com | ajayr@formbuddy.com |
| .formpl.us | http://www.formpl.us/form/0BxJTolgfKiZeTUxrSkhvUjZnVUk |
| .formstack.com | http://support.formstack.com/customer/portal/emails/new |
| *.hostingsiteforfree.com | http://www.1freehosting.com/hosting-support.html |
| *.i-m.com and i-m.mx | abuse@imcreator.com |
| *.jigsy.com | abuse@jigsy.com |
| *.jimdo.com | support@jimdo.com |
| *.logiforms.com/formdata/ | support@logiforms.zendesk.com |
| *.mailjol.net | abuse@ |
| *.mypressonline.com | abuse@ |
| .mooform.com | http://www.motava.com/contact.html |
| noads.us | http://client.hostwoo.com/contact-us |
| *.pandaform.com | http://help.pandaform.com/requests/anonymous/new or support@pandaform.zendesk.com ? |
| pastehtml.com | http://pastehtml.com/abuse or support@pastehtml.com?subject=Abuse report&body=Reporting abuse at address: |
| *.phpforms.net/ | Valera Vlasyuk and others at [support@phpforms.net] |
| */phpform/use/ | Depends on the host |
| .survsoft.com | http://www.esurveys.com/contact.php or info@survsoft.com |
| *.t15.org/ | http://www.t15.org/contact.php or wm@t15.org or wm@webfreehosting.net |
| *.tripod.com/ | support@support.lycos.com or https://cshelp.tripod.com/anonymous_requests/new |
| *.the-webmail.com | nico@creaweb.fr ? and check for imbedded formbuddy |
| *.twomini.com | support@2freehosting.com |
| *.ucoz.* | http://www.ucoz.*/abuse/#abuse or abuse@ucoz.* |
| *.webnode.com | abuse@webnode.com |
| *.webs.com | http://www.webs.com/report.htm or abuse@webs.com |
| *.websitewizard.com | http://websitewizard.cs.implix.com/ModSupportTicket/CreateTicket/visitor |
| *.weebly.com | abuse@weebly.com |
| *.wix.com | abuse@wix.com |
| *.wufoo.com | https://master.wufoo.com/forms/m7p0x3/ |
| *.xtgem.com | abuse@xtgem.com and check for imbedded formbuddy |
| *.yolasite.com | abuse@yola.com |
| *.zohosites.com | abuse@zoho.com |
| adobeformscentral.com | maybe abuseCSR@adobe.com or just abuse@adobe.com |
| | |
When user get an email message containing a link to one of these web form addresses, user should think carefully before click any link.
Filed under: Announcements
Leave a reply
You must be logged in to post a comment.