Prolexic is an anti-DDOS specialist hosting firm with a reputation for being one of the good guys. It’s a bit of a surprise to see Google AdWords phishing sites on a Prolexic server, hopefully they won’t be there for long.
The phishing messages look something like this:
From: Google AdWords
Subject: Google AdWords: You have a new alert.
This message was sent from a notification-only email address that does
not accept incoming email. Please do not reply to this message. If you
have any questions, please our Help Center to find answers to
frequently asked questions.
Dear Valued Customer,
You have a new alert from Google Adwords.
Sign in to your AdWords account at http://www.googlernn.com/Select/login
The Google AdWords Team
It’s difficult to know just how many phishing sites are on this server, however the following can be identified:
Sites appear to be hosted on 188.8.131.52 along with thousands of legitimate sites. All the domains have been registered in the past few days with hidden domain registrations.
Leave a reply