2024-11-06 Daily Phishing URL Summary

207 Phishing Websites Detected Today

We have detected 207 possible phishing websites in the past 24 hours.

Daily Trending Brands

Daily trending brands with detected URLs are follows.

1: Tech Support Scam (88)

hxxps://menscravery[.]life/gddtykditdtuc/68tre8fs6wfqaeg6qarfscvyfd67qa/6rdfavzfac8yjzsrgcua6zjsfcvusj/
hxxps://jjkkxzxss767zzsxxszsa[.]blob[.]core[.]windows[.]net/$web/werrx01USAHTML/index[.]html?bcda=1-844-206-9254
hxxps://rishi55[.]z6[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-85549-14992
hxxps://rishi55[.]z6[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-83178-96435
hxxps://duskkk8-secondary[.]z6[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-85549-14992
hxxps://duskkk8-secondary[.]z6[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-83178-96435
hxxps://sadbhavnews[.]b-cdn[.]net/
hxxps://main[.]d1ah7a5wvajmk5[.]amplifyapp[.]com/
hxxps://favorablydefender[.]z13[.]web[.]core[.]windows[.]net/
hxxps://microsoft-device-23121[.]pages[.]dev/Wi0n0erAry0mpAlert048/
hxxps://main[.]d10ca905gfz49h[.]amplifyapp[.]com/
hxxps://duskkk6-secondary[.]z1[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-85549-14992
hxxps://duskkk6-secondary[.]z1[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-83178-96435
hxxps://main[.]d1ivw50h15ceql[.]amplifyapp[.]com/
hxxps://main[.]d3r8bmy88sgskd[.]amplifyapp[.]com/
hxxps://main[.]d350376vxrigaf[.]amplifyapp[.]com/
hxxps://modernscalableinfoag[.]z13[.]web[.]core[.]windows[.]net/
hxxps://duskkk8[.]z6[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-85532-42855
hxxps://predictascertained[.]z13[.]web[.]core[.]windows[.]net/
hxxps://consentsxmeant[.]z13[.]web[.]core[.]windows[.]net/
hxxps://seekingoestcrd[.]z13[.]web[.]core[.]windows[.]net/
hxxps://main[.]d2l2pv8ifhlvpn[.]amplifyapp[.]com/
hxxps://relatedtremsxc[.]z13[.]web[.]core[.]windows[.]net/
hxxps://rishi55-secondary[.]z6[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-85532-42855
hxxps://4d5280c6-8a92-4665-a114-bb6fe41a9fdf[.]s3[.]ap-northeast-2[.]amazonaws[.]com/&&$@%5E@!!!@%23!@@!$@%25$%5E!%5E%25$$&%23%25!%23%23%5E$%23%25%5E!%5E$@%5E!%25%23$/index[.]html?7rk2ol3a2n=1678458194711760ead8b21cbd14879ac97c17fcc064b2a298&c=vienna&ip=vision+insurance&key=22182&q=guardinanytime[.]com&re=198[.]81[.]129[.]193&s=295355232-guardinanytime[.]com&sr=133608
hxxps://avsgtt9[.]z23[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-83178-96435
hxxps://avsgtt9[.]z23[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-85532-40973
hxxps://tessta[.]pages[.]dev/Wi0n0ALxerrinf0x0876/
hxxps://namesnewoaoa[.]b-cdn[.]net/
hxxps://device-network-12[.]pages[.]dev/Wi0n0erAry0mpAlert048/
hxxps://webp0rnattested[.]z13[.]web[.]core[.]windows[.]net/
hxxps://device-12[.]pages[.]dev/Wi0n0erAry0mpAlert048/
hxxps://u9x3aclrwpruc[.]pages[.]dev/smart89/
hxxps://avsgtt88[.]z10[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-83178-96435
hxxps://avsgtt88[.]z10[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-88884-87621
hxxps://main[.]d3o8i7k8wuw5m9[.]amplifyapp[.]com/
hxxps://scrupulousconcern[.]z13[.]web[.]core[.]windows[.]net/
hxxps://c9kwfyzy9euu73vy[.]pages[.]dev/smart89/
hxxps://greece3[.]trendhiveusa[.]store/
hxxps://duskkk5-secondary[.]z6[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-83178-96435
hxxps://duskkk6[.]z1[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-85532-40973
hxxps://duskkk6[.]z1[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-88884-87621
hxxps://confrontationtale[.]pages[.]dev/TC1P44Qg/
hxxps://towardslimited[.]z13[.]web[.]core[.]windows[.]net/
hxxps://avsgtt1[.]z11[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=09-70-38-93-28
hxxps://qkmain00linknew094[.]z11[.]web[.]core[.]windows[.]net/winside/00Windbndktw0win11advance/index[.]html
hxxps://tronblmak9si[.]z13[.]web[.]core[.]windows[.]net/
hxxps://tronblmak9si[.]z13[.]web[.]core[.]windows[.]net/?click_id=2isqs6bvem35yhaib&tid=903&subid=citizensback[.]com&ref=citizensback[.]com&922
hxxps://duskkk5[.]z6[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-85532-42855
hxxps://duskkk5[.]z6[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-88884-87621
hxxps://main[.]di9mnx0wj6v6h[.]amplifyapp[.]com/
hxxps://duskkk9-secondary[.]z1[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-85549-14992
hxxps://duskkk9-secondary[.]z1[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-83178-96435
hxxps://duskkk9[.]z1[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-88884-87621
hxxps://duskkk9[.]z1[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-85532-42855
hxxps://dcgsdcsghdms1[.]pages[.]dev/
hxxps://collapserugby[.]pages[.]dev/W08Myr0hotline0JP07/
hxxps://device-alert-012[.]pages[.]dev/Wi0n0erAry0mpAlert048/
hxxps://avsgtt9-secondary[.]z23[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-85549-14992
hxxps://innovationsbillionprn[.]z13[.]web[.]core[.]windows[.]net/
hxxps://rishi9[.]z31[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-88861-59081
hxxps://specificacross[.]z13[.]web[.]core[.]windows[.]net/
hxxps://rishi10[.]z1[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-83178-96435
hxxps://rishi10[.]z1[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-85532-40973
hxxps://tronblka4s3m[.]z13[.]web[.]core[.]windows[.]net/
hxxps://yebacefip[.]z1[.]web[.]core[.]windows[.]net/Wi0nHelpABhErr0t067/index[.]html
hxxps://micro-device-alert-12[.]pages[.]dev/Wi0n0erAry0mpAlert048/
hxxps://otpneededurgents[.]b-cdn[.]net/
hxxps://rishi8[.]z1[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-85549-14992
hxxps://rishi8-secondary[.]z1[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-83178-96435
hxxps://rishi8-secondary[.]z1[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-88884-87621
hxxps://6inp64cmwmlu[.]z13[.]web[.]core[.]windows[.]net/?dicbo=v4-t8SvFcr-1195876348-1
hxxps://avsgtt88-secondary[.]z10[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-85549-14992
hxxps://depictfirstfilmsx[.]z13[.]web[.]core[.]windows[.]net/
hxxps://main[.]d2mprvi4i1q3h0[.]amplifyapp[.]com/
hxxps://main[.]d1p4al3b73yxrt[.]amplifyapp[.]com/
hxxps://jeethigayadonald[.]b-cdn[.]net/
hxxps://administration-ahd[.]pages[.]dev/W08Myr0hotline0JP07/
hxxps://denver1[.]shopsphereusa[.]xyz/_Fm7-alert[.]mp3
hxxps://latumiyo[.]z5[.]web[.]core[.]windows[.]net/Win08ShDMeEr0887/index[.]html?phone=null
hxxps://valuedscenmissav[.]z13[.]web[.]core[.]windows[.]net/
hxxps://rishi9-secondary[.]z31[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-85549-14992
hxxps://rishi9-secondary[.]z31[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-88884-87621
hxxps://device-lert-02209[.]pages[.]dev/Wi0n0erAry0mpAlert048/
hxxps://funny-tharp[.]128-199-137-171[.]plesk[.]page/
hxxps://regularadultstrends[.]z13[.]web[.]core[.]windows[.]net/
hxxps://rishi10-secondary[.]z1[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-85549-14992
hxxps://undergostudies[.]z13[.]web[.]core[.]windows[.]net/

2: Rakuten (32)

hxxps://www[.]zarpt[.]com/
hxxps://www[.]yichen985[.]com/
hxxps://www[.]hn-kuaishou[.]com/
hxxps://www[.]hanoverhorses[.]com/
hxxps://www[.]argentinaforex[.]com/
hxxps://www[.]wm-wirtschaftsmediation[.]com/
hxxps://www[.]saperestudio[.]com/
hxxps://www[.]gigahomes1500[.]com/
hxxps://www[.]loveyournewgreenhome[.]com/
hxxps://www[.]fnshopxow[.]com/
hxxps://www[.]fehe7[.]cn/
hxxps://www[.]innergation[.]com/
hxxps://www[.]powerslimuk[.]com/
hxxps://www[.]sakuradesignfloral[.]com/
hxxps://www[.]duffyseminars[.]com/
hxxps://www[.]videocallwithkids[.]com/
hxxps://www[.]wp-blog[.]cn/
hxxps://www[.]humsikhatehain[.]com/
hxxps://www[.]vsgrealestate[.]com/
hxxps://www[.]urbancustombikes[.]com/
hxxps://www[.]huahangtong168[.]com/
hxxps://www[.]zxcvwkelsccouivf-kele[.]com/
hxxps://www[.]fnshopbof[.]com/
hxxps://www[.]hihnhhx[.]cn/
hxxps://www[.]elyfishingtrips[.]com/
hxxps://www[.]blogsciclistas[.]com/
hxxps://www[.]miyamamasayoshi[.]com/
hxxps://www[.]zxcsccddcouivf-kele[.]com/
hxxps://www[.]heimaojituan13[.]com/
hxxps://www[.]vnpoxxr[.]cn/
hxxps://www[.]pxbdn[.]com/
hxxps://www[.]igphotobuzz[.]com/

3: Potential Shop Scam (26)

hxxps://www[.]versaceoutletnz[.]co[.]nz/
hxxps://www[.]castoreus[.]com/
hxxps://www[.]wolverine-belgium[.]com/
hxxps://www[.]supraoncolombia[.]com/0[.]07948508357199136
hxxps://www[.]patriciasnashoutlet[.]top/0[.]7616716354596262
hxxps://www[.]bedrocksandalsfrance[.]fr/
hxxps://www[.]reservedosterreich[.]com/
hxxps://www[.]nikemalaysia[.]co/
hxxps://www[.]ukclothingoutlet[.]com/collections/clothing-c-5[.]html
hxxps://www[.]lasenzatrkiye[.]shop/
hxxps://www[.]tyr-canada[.]ca/collections/shoes-crossfit-shoes-men-c-17_18[.]html?c29ydgluzz1wcmljzurfu0m=
hxxps://www[.]dcshoes-ca[.]com/
hxxps://www[.]liujonederland[.]us/products/0[.]7217661256372914
hxxps://www[.]supreme-cz[.]cz/
hxxps://www[.]tiendascaterpillarenlima[.]com/products/0[.]9035368388679075
hxxps://www[.]legocolombia[.]com[.]co/products/star%c2%a0wars-lego-diorama-ataque-a-la-estrella-de-la-muerte-edades-18-75329-art%c3%adculo-665-piezas-ltk925134-p-663[.]html
hxxps://www[.]oldnavyfrance[.]fr/
hxxps://www[.]bocageoutlet[.]fr/
hxxps://www[.]mooseknuckleoutlet[.]com/
hxxps://www[.]stussybogota[.]com[.]co/
hxxps://www[.]wolverinestiefel[.]com/
hxxps://www[.]tevasparis[.]fr/
hxxps://www[.]pandoraaustria[.]at/includes/templates/pandora-at/jscript/jscript_jquery_kinslideshow[.]js
hxxps://www[.]replayjeanscz[.]cz/
hxxps://www[.]stanleygermany[.]de/
hxxps://www[.]stanley[.]de[.]com/

4: Microsoft (14)

hxxps://microsoft[.]virtual-cloud[.]link/jb0vzzl1qcwwj636
hxxp://euspa[.]eubroker[.]cloud/pages?rid=W3xTEqP
hxxps://frgtc[.]kukut[.]workers[.]dev/
hxxps://microsofff[.]com/?rid=2935643&key=HJO628
hxxps://mic[.]pages[.]dev/
hxxps://pub-a50ba8a31eda4fd5acfa55b5fd1d4ca2[.]r2[.]dev/oduma[.]html
hxxps://ellededs[.]pages[.]dev/
hxxps://w8tecnologia[.]com[.]br/web/chak/hh[.]html
hxxps://foc3[.]github[.]io/domain/
hxxps://crispawsedrtfgyuhjijiuytrdfy-meme[.]pages[.]dev/
hxxps://www[.]docstoreinternal[.]com/eur/98db9fb9-f52b-4e63-83d9-795ccd2dfcca/bcb83865-f990-4228-a979-af42dbb4232f/333b7c98-ddef-401b-a0f5-7dc3d6ba9af4/login?id=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
hxxps://few-suave-nannyberry[.]glitch[.]me/
hxxps://hariharsolution[.]com/monline-auth/
hxxps://8e9bd4c3bff1ea958f7759bc43a4c226fc6d46894d5e80d41efa573d30[.]pages[.]dev/c4203845b2ebf1208ceb9e5f/b09e91902ba414080b0945b20/?qy3j1x2=umlfhk&pcyb8=8g0k1e&jpehaw=dju-oe-htr63qt-v7-yf&zdpunhxf5v=vobgsac

5: Generic Email (10)

hxxp://srv223503[.]hoster-test[.]ru/wifi/index[.]html
hxxps://bafkreigqpfsls7uyv3wt3p2osvsz6kk4hhkwbiliahd2tccddnt7ac53xm[.]ipfs[.]flk-ipfs[.]xyz/
hxxps://bafkreif54ruts3ppvyk4ny6ecrtpxk4ciym6dgtpkqeyccosiskwgmtmc4[.]ipfs[.]dweb[.]link/
hxxps://abueme-96e1[.]ehnelacsrralo[.]workers[.]dev/
hxxps://purp[.]jipy[.]workers[.]dev/
hxxps://pfirstbank[.]com//maxme/index[.]html
hxxps://bafybeie54slftgsqpcdnfuqbvgijzfuffclmeaypa74s6il5jbisdpzy2m[.]ipfs[.]flk-ipfs[.]xyz/?openboxmailer/auto/eMail[.]web/987FTmail[.]authenticate/checking_auth0/authenticate-userid/84778949884903948993839/
hxxps://bafybeie54slftgsqpcdnfuqbvgijzfuffclmeaypa74s6il5jbisdpzy2m[.]ipfs[.]flk-ipfs[.]xyz/
hxxps://bafkreig42dhv6g55bztxywlsams3y2dxhmm3qzrjekxksujux5crv7jy4i[.]ipfs[.]dweb[.]link/
hxxps://argonaut[.]ro/mail/login/inbox[.]html

6: BT (7)

hxxps://bt-email-update-106332[.]weeblysite[.]com/
hxxps://voice-106687[.]weeblysite[.]com/
hxxps://webmail-100691[.]weeblysite[.]com/
hxxps://smiplybtfiru[.]weeblysite[.]com/
hxxps://bt-mail-101062[.]weeblysite[.]com/
hxxps://iuytdyduy[.]weeblysite[.]com/
hxxps://my-site-107569-107420[.]weeblysite[.]com/

7: AT&T (6)

hxxps://inc-107280[.]weeblysite[.]com/
hxxps://att-102891-101171[.]weeblysite[.]com/
hxxps://sign-in-101095[.]weeblysite[.]com/
hxxps://mailservice-109539[.]weeblysite[.]com/
hxxps://my-site-103365-101308[.]weeblysite[.]com/
hxxps://iidernrnd[.]weeblysite[.]com/

8: Steam (6)

hxxps://steam[.]workshopedited[.]com/sharedfiles/filesdetails/Mac-10_night_dragon
hxxps://s[.]team-bd[.]com/p/mdr-mgpq/qjfmnndt/
hxxps://s[.]team-xa[.]com/p/mdr-mgpq/qjfmnndt/
hxxps://workshopcontributors[.]com/sharedfile/filedetails/bounty_brim
hxxps://c[.]adds-steam[.]com/p/fhtb-mrgw/nwjpmdwv
hxxps://www[.]workshopcontributors[.]com/sharedfile/filedetails/bounty_brim/

9: Adobe (4)

hxxps://crimson-union-e795[.]vtj77xj4[.]workers[.]dev/
hxxps://d9[.]piaridi[.]workers[.]dev/
hxxps://cross-docs-32e7[.]ygtemanallomm[.]workers[.]dev/
hxxps://crons-efly-789b[.]crylpvhaolaeoy[.]workers[.]dev/

10: Instagram (3)

hxxps://heyviper79[.]github[.]io/instagram-clone/
hxxps://coderrweb[.]github[.]io/lnstagram/index[.]html
hxxp://music-auditionloo[.]000[.]pe/sc/1?i=1

Phishing URL IOCs

You can see our feed of observed IOCs for the brand on following threat intelligence platforms.

https://www.virustotal.com/gui/collection/user/noladefense/collections

https://otx.alienvault.com/user/noladefense/pulses

What is Phishing?

Phishing is a type of scam where criminals create fake websites, emails or messages that appear to be from a legitimate source, such as a bank or e-commerce site, to trick people into giving away their personal information, such as passwords or credit card numbers. They use this information to steal money, commit identity theft or carry out other fraudulent activities.

How to Handle It

If you have already accessed such phishing websites, take the following steps:

If you entered any personal information, change all passwords and alert your bank and credit card companies.
Enable multi factor authentication to prevent access from attacker.
If you entered any financial information, check your bank and credit card statements to ensure no fraudulent activity has occurred.
Install anti-virus software and keep it up-to-date to prevent future phishing attempts.
Be sure to also spread the word to your friends and family about this phishing site, and always be cautious when providing personal or financial information online.

Why Phishing is Dangerous

Phishing is dangerous because it can result in identity theft, financial loss, and other negative consequences. Criminals can use your personal information to open new bank accounts, apply for loans or credit cards, and even file tax returns in your name. Phishing attacks are becoming increasingly sophisticated and difficult to detect, so it is important to be cautious and vigilant when providing personal information online.

Conclusion

Phishing attacks are a serious threat that can result in significant financial and personal losses. If you have encountered a similar website, be sure to take immediate action to protect your personal and financial information. By reporting the site and spreading the word about the dangers of phishing, you can help prevent others from falling victim to these scams.

NOLA Defense

Search This Blog