2024-11-30 Daily Phishing URL Summary

216 Phishing Websites Detected Today

We have detected 216 possible phishing websites in the past 24 hours.

Daily Trending Brands

Daily trending brands with detected URLs are follows.

1: AT&T (59)

hxxps://sign-in-att-109683[.]weeblysite[.]com/
hxxps://home-101632[.]weeblysite[.]com/
hxxps://attcom-105386[.]weeblysite[.]com/
hxxps://hotmail-104437[.]weeblysite[.]com/
hxxps://sbcglobal2024-103143[.]weeblysite[.]com/
hxxps://home-104751[.]weeblysite[.]com/
hxxps://att3234[.]weeblysite[.]com/
hxxps://home-101430[.]weeblysite[.]com/
hxxps://att-101532[.]weeblysite[.]com/
hxxps://athome-101274[.]weeblysite[.]com/
hxxps://mailatthome-609004[.]weeblysite[.]com/
hxxps://home-104150[.]weeblysite[.]com/
hxxps://att-107497[.]weeblysite[.]com/
hxxps://att-100669[.]weeblysite[.]com/
hxxps://att-109027[.]weeblysite[.]com/
hxxps://mail-101410[.]weeblysite[.]com/
hxxps://atttnet-103558[.]weeblysite[.]com/
hxxps://mail-103986[.]weeblysite[.]com/
hxxps://att-102808[.]weeblysite[.]com/
hxxps://shaw-102809[.]weeblysite[.]com/
hxxps://login-screen-107572[.]weeblysite[.]com/
hxxps://sdsdhihsdui-101387[.]weeblysite[.]com/
hxxps://signin-att-109181[.]weeblysite[.]com/
hxxps://att-106815-106888[.]weeblysite[.]com/
hxxps://mail-103608[.]weeblysite[.]com/
hxxps://att-106929[.]weeblysite[.]com/
hxxps://good-home[.]weeblysite[.]com/
hxxps://inc-109213[.]weeblysite[.]com/
hxxps://sign-in-att-100076[.]weeblysite[.]com/
hxxps://att-1877-197[.]weeblysite[.]com/
hxxps://att-109625-109046[.]weeblysite[.]com/
hxxps://att-105943-104655[.]weeblysite[.]com/
hxxps://sign-in-att-106553[.]weeblysite[.]com/
hxxps://att-108937[.]weeblysite[.]com/
hxxps://currentktt[.]weeblysite[.]com/
hxxps://home-101828[.]weeblysite[.]com/
hxxps://sign-in-att-103929[.]weeblysite[.]com/
hxxps://account-werrttt[.]weeblysite[.]com/
hxxps://sbclogin676108347[.]weeblysite[.]com/
hxxps://att-15594[.]weeblysite[.]com/
hxxps://shaw-104768[.]weeblysite[.]com/
hxxps://mail-106280[.]weeblysite[.]com/
hxxps://attcom-108246[.]weeblysite[.]com/
hxxps://sign-in-att-109299[.]weeblysite[.]com/
hxxps://adminserver009-105336[.]weeblysite[.]com/
hxxps://shaw-105237[.]weeblysite[.]com/
hxxps://home-10207412[.]weeblysite[.]com/
hxxps://att-105509[.]weeblysite[.]com/
hxxps://home-107903[.]weeblysite[.]com/
hxxps://acxaaiceaomemeocser[.]weeblysite[.]com/
hxxps://att-login6263[.]weeblysite[.]com/
hxxps://shaw-105065[.]weeblysite[.]com/
hxxps://att-102193[.]weeblysite[.]com/
hxxps://login-screen-100728[.]weeblysite[.]com/
hxxps://shaw-107141[.]weeblysite[.]com/
hxxps://attnet-105004[.]weeblysite[.]com/
hxxps://home-105704[.]weeblysite[.]com/
hxxps://att-105748[.]weeblysite[.]com/
hxxps://atwebstorenew[.]weeblysite[.]com/

2: Tech Support Scam (56)

hxxps://hurrieshomecomxs[.]z13[.]web[.]core[.]windows[.]net/clicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurcs/clicktoclickazurclicktoclickazurclick[.]html
hxxps://stativv[.]z27[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-88873-40482
hxxps://stativv[.]z27[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-84441-23024
hxxps://watchingjavtifullp0rn[.]z13[.]web[.]core[.]windows[.]net/clicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurcs/clicktoclickazurclicktoclickazurclick[.]html
hxxps://jm7lqhyjh4wb0gyyvrq[.]pages[.]dev/smart89/
hxxps://fxeurvkcdbzb[.]pages[.]dev/smart89/
hxxps://bocmyw606y[.]pages[.]dev/smart89/
hxxps://aiuytrf4-secondary[.]z23[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-88868-26223
hxxps://axx10[.]z5[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-88873-42602
hxxps://wihwqrjmdzyo[.]pages[.]dev/smart89/
hxxps://aiuytrf[.]z1[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-88868-26223
hxxps://aiuytrf-secondary[.]z1[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-88873-40482
hxxps://aiuytrf-secondary[.]z1[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-84441-23024
hxxps://streamxxtubesweb[.]z13[.]web[.]core[.]windows[.]net/clicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurcs/clicktoclickazurclicktoclickazurclick[.]html
hxxps://frv5[.]z23[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-88868-26223
hxxps://appservicein120014[.]pages[.]dev/
hxxps://xnxscontenthubs[.]z13[.]web[.]core[.]windows[.]net/clicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurcs/clicktoclickazurclicktoclickazurclick[.]html
hxxps://frv5-secondary[.]z23[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-88873-40482
hxxps://frv5-secondary[.]z23[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-84441-23024
hxxps://premisesp0rnox[.]z13[.]web[.]core[.]windows[.]net/clicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurcs/clicktoclickazurclicktoclickazurclick[.]html
hxxps://axx6-secondary[.]z9[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-88868-26223
hxxps://axx7-secondary[.]z28[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-88873-40482
hxxps://axx7-secondary[.]z28[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-84441-23024
hxxps://newesthardcorewbs[.]z13[.]web[.]core[.]windows[.]net/clicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurcs/clicktoclickazurclicktoclickazurclick[.]html
hxxps://aiuytrf4[.]z23[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-88873-40482
hxxps://aiuytrf4[.]z23[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-84441-23024
hxxps://stativv-secondary[.]z27[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-88868-26223
hxxps://collecp0rntion[.]z13[.]web[.]core[.]windows[.]net/clicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurcs/clicktoclickazurclicktoclickazurclick[.]html
hxxps://axx6[.]z9[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-88873-40482
hxxps://axx6[.]z9[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-84441-23024
hxxps://onesecc[.]xyz/
hxxps://femboyinsertgd[.]z13[.]web[.]core[.]windows[.]net/clicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurcs/clicktoclickazurclicktoclickazurclick[.]html
hxxps://blowjobacheives[.]z13[.]web[.]core[.]windows[.]net/clicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurcs/clicktoclickazurclicktoclickazurclick[.]html
hxxps://p0rnsoxceexcessive[.]z13[.]web[.]core[.]windows[.]net/clicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurcs/clicktoclickazurclicktoclickazurclick[.]html
hxxps://frv7-secondary[.]z28[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-88868-26223
hxxps://axx8-secondary[.]z33[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-88868-26223
hxxps://jexac234[.]pages[.]dev/
hxxps://pornstarsgetranbms[.]z13[.]web[.]core[.]windows[.]net/clicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurcs/clicktoclickazurclicktoclickazurclick[.]html
hxxps://superb-baklava-10ac5b[.]netlify[.]app/
hxxps://axx8[.]z33[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-88873-40482
hxxps://axx8[.]z33[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-84441-23024
hxxps://axx7[.]z28[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-88868-26223
hxxps://intendedfreep0rn[.]z13[.]web[.]core[.]windows[.]net/clicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurcs/clicktoclickazurclicktoclickazurclick[.]html
hxxps://spiralbootusx[.]z13[.]web[.]core[.]windows[.]net/clicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurcs/clicktoclickazurclicktoclickazurclick[.]html
hxxps://frv7[.]z28[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-88873-40482
hxxps://frv7[.]z28[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-84441-23024
hxxps://appearforcesxw[.]z13[.]web[.]core[.]windows[.]net/clicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurcs/clicktoclickazurclicktoclickazurclick[.]html
hxxps://axx10-secondary[.]z5[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-88868-26223
hxxps://axx10-secondary[.]z5[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-88873-40482
hxxps://axx10-secondary[.]z5[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-84441-23024
hxxps://axx10-secondary[.]z5[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-88868-26148
hxxps://monkfish-app-blb5w[.]ondigitalocean[.]app/
hxxps://moviessureclciks[.]z13[.]web[.]core[.]windows[.]net/clicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurcs/clicktoclickazurclicktoclickazurclick[.]html
hxxps://auytggtgf3[.]z20[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-88868-26223
hxxps://auytggtgf3[.]z20[.]web[.]core[.]windows[.]net/werrx01USAHTML/?bcda=(0101)-88873-40482
hxxps://streamallmovies[.]z13[.]web[.]core[.]windows[.]net/clicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurclicktoclickazurcs/clicktoclickazurclicktoclickazurclick[.]html

3: Potential Shop Scam (25)

hxxps://www[.]sanukca[.]com/
hxxps://www[.]onrunning-turkiye[.]com[.]tr/search[.]html
hxxps://www[.]ipanema-southafrica[.]co[.]za/
hxxps://www[.]scuffersusa[.]us[.]com/
hxxps://www[.]shopshoesgermany[.]top/search[.]html
hxxps://www[.]pleasarjapan[.]com/
hxxps://www[.]stussymalaysia[.]cc/
hxxps://www[.]thursday-boots-belgium[.]com/
hxxps://www[.]scuffers[.]us[.]com/
hxxps://www[.]sundayredfrance[.]fr/
hxxps://www[.]crocaustraliau[.]com/
hxxps://www[.]zaranorge[.]com/
hxxps://www[.]whitefoxboutique[.]us[.]com/
hxxps://www[.]botashunteruy[.]com/
hxxps://www[.]stanleyaustralia[.]top/
hxxps://www[.]the-northfaceespana[.]com/
hxxps://www[.]owalaindonesias[.]com/
hxxps://www[.]norgestore[.]cc/
hxxps://www[.]lecreusetuae[.]com/collections/tabletop-trivets-coasters-white-c-19_39[.]html
hxxps://www[.]longchamposterreich[.]at/outlet[.]html
hxxps://www[.]tommyhilfigerpolska[.]co[.]za/
hxxps://www[.]takeyathailand[.]com/outlet[.]html
hxxps://www[.]furlacanadaprice[.]com/
hxxps://www[.]saintlaurentfactoryoutlets[.]com/outlet[.]html
hxxps://www[.]columbiaclothingukoutlet[.]com/

4: Generic Email (18)

hxxps://microsopop-0932[.]kodruvepsu[.]workers[.]dev/
hxxps://bafybeiadqa5sm5fct4yj7q4g3sxy5hjsouhhaaglnoftlllwq3quriukni[.]ipfs[.]flk-ipfs[.]xyz/?84778949884903948993839/
hxxps://rudh[.]ultimatecomp[.]com[.]sg/
hxxps://roundcube-hostsecured[.]pages[.]dev/
hxxps://hello-world-rapid-sea-6ce9[.]bonthrone1[.]workers[.]dev/
hxxps://bafkreihomosydpfhbe2oj7gyyzdv2zoe6afmbniunhm7pviqhfdbmln5eq[.]ipfs[.]flk-ipfs[.]xyz/
hxxps://ea61d4d9[.]413i336d632m5z8hznelz6q519fo2hs21x1ef[.]pages[.]dev/
hxxps://myoutlook-notificati0[.]lirzizupsi[.]workers[.]dev/
hxxps://bafkreihwmdqtthfsuaejhcx7izfsyojywzwwc5fo25z4bki6uswimqr65q[.]ipfs[.]dweb[.]link/
hxxps://love-wsignin-1dd9[.]cojehe7926[.]workers[.]dev/
hxxps://microolucy-snow[.]mngolrq[.]workers[.]dev/
hxxps://0000000000000000000000000000000update-update00000000000000[.]pages[.]dev/
hxxps://lonwaggishs-canions-webmailog-updateweb-updatregg-jrgfdjhsmdn[.]freewebhostmost[.]com/
hxxps://bafybeicgn5gmf6xmb227cx4yaq7zocu3wu7j65msigbh6x7mei3sh2ibsq[.]ipfs[.]w3s[.]link/
hxxps://uirrtyeuriu[.]ru/
hxxps://stupendous-rain-writer[.]glitch[.]me/
hxxps://hello-world-jolly-recipe-f01c[.]potijo9433[.]workers[.]dev/
hxxps://bafkreicragjsa43kru6dnkzejp5lxf3ofp7mivtnz5ppzhd2cj5iqtafgm[.]ipfs[.]dweb[.]link/

5: Microsoft (16)

hxxps://kihgtb[.]bexacn[.]workers[.]dev/
hxxps://frosty-glitter-422d[.]ar7252[.]workers[.]dev/
hxxps://pub-45aae2fafe9044019f5ade95eae90cd6[.]r2[.]dev/heel[.]html
hxxps://pub-30e45fb8ca8f40f1b361826fbcbe8187[.]r2[.]dev/frttedom[.]html
hxxps://web00-po[.]pages[.]dev/
hxxps://ijhsk[.]github[.]io/yfdshw/
hxxps://nvbjmister[.]tivdflpom7688[.]workers[.]dev/
hxxps://pub-50240b6157964bfd9cc1437df2bb2b24[.]r2[.]dev/carlo[.]html
hxxps://gytieciytokx[.]gthcyexikcfremhbrc[.]workers[.]dev/
hxxps://tdbxaw[.]bhawe[.]workers[.]dev/
hxxps://pub-c42696c328024de0897a4a8d26f1483c[.]r2[.]dev/89076[.]html
hxxps://pub-0f129597b1c54dd9b9d80e64ad0fdb84[.]r2[.]dev/12345[.]html
hxxps://sharepoint-0a17[.]dideto2686[.]workers[.]dev/
hxxps://pub-7d33021d902f47c8841999dde4cf0db0[.]r2[.]dev/mwe[.]html
hxxp://34[.]146[.]186[.]175/
hxxps://pub-9a6f1f3f7bf34c09ac13555d175cb570[.]r2[.]dev/comnkam[.]html

6: Adobe (10)

hxxps://files[.]reloaded-shared[.]workers[.]dev/
hxxps://anexmb-b8fd[.]eiicleanylcverodr[.]workers[.]dev/
hxxps://02e[.]fazvxvai[.]workers[.]dev/
hxxps://cloudd-9049[.]tolevilmtohean[.]workers[.]dev/a4ad7099-b1df-4037-bf32-8774a2ec5b55
hxxps://ubarys-ba4b[.]ydudraromenmto[.]workers[.]dev/
hxxps://purple-da6462[.]qqu4qswu[.]workers[.]dev/
hxxps://frosty-limit-f7a8[.]jim9mnap[.]workers[.]dev/
hxxps://cloud-salad-8852[.]neleuoarbrlei[.]workers[.]dev/
hxxps://kyanar-ef3c[.]ceaacplnreliir[.]workers[.]dev/81342fb7-4dd0-4ba8-a117-52458e9d2def
hxxps://divine-fire-196c[.]nc5ctekl[.]workers[.]dev/edf487b9-9717-45ca-abde-af0061ca1609

7: BT (9)

hxxps://bt-101503[.]weeblysite[.]com/
hxxps://btt-100902[.]weeblysite[.]com/
hxxps://bt-102681[.]weeblysite[.]com/
hxxps://activate-106742[.]weeblysite[.]com/
hxxps://btinternet-107123[.]weeblysite[.]com/
hxxps://webmail-107799[.]weeblysite[.]com/
hxxps://bt-105702[.]weeblysite[.]com/
hxxps://webmail-101753[.]weeblysite[.]com/
hxxps://bt-106118[.]weeblysite[.]com/

8: OneDrive (7)

hxxps://hmyoffice365oth-47f8[.]guzelkiz66[.]workers[.]dev/
hxxps://sweet-boat-7259[.]fpuddhg067[.]workers[.]dev/
hxxps://emdr[.]pages[.]dev/
hxxps://unaee-e796[.]catroeggste[.]workers[.]dev/
hxxps://aasafetyinc-file[.]pages[.]dev/
hxxps://tmarnb[.]net/pub-cabd8b9aa2ef4134b74ec441b6604e21[.]r2[.]secure/dropbox/
hxxps://filescloudcs[.]oss-ap-northeast-1[.]aliyuncs[.]com/

9: DHL (5)

hxxps://lcl-sailings[.]online/DHL/
hxxps://giluvo[.]wordifysites[.]com/black-friday/
hxxps://mypacketus[.]serv00[.]net/12/12/infoz/DH/dhl/track/track/
hxxps://mypacketus[.]serv00[.]net/12/12/infoz/DH/GlobalDhl/
hxxps://www[.]mt-lesershop[.]de/weihnachten/adventskalender-grillgenuss_1047923_9223/

10: Generic Cloudflare (4)

hxxps://request-meta[.]pages[.]dev/next
hxxps://pub-037e3d86214d4d4dbb56b5c263f6c82a[.]r2[.]dev/o[.]html
hxxps://worker-purple-frost-c032[.]dwinkaren[.]workers[.]dev/
hxxps://verbdidactic-redesigned-systemocto-winnerose-happinessimpr[.]pages[.]dev/

Phishing URL IOCs

You can see our feed of observed IOCs for the brand on following threat intelligence platforms.

https://www.virustotal.com/gui/collection/user/noladefense/collections

https://otx.alienvault.com/user/noladefense/pulses

What is Phishing?

Phishing is a type of scam where criminals create fake websites, emails or messages that appear to be from a legitimate source, such as a bank or e-commerce site, to trick people into giving away their personal information, such as passwords or credit card numbers. They use this information to steal money, commit identity theft or carry out other fraudulent activities.

How to Handle It

If you have already accessed such phishing websites, take the following steps:

If you entered any personal information, change all passwords and alert your bank and credit card companies.
Enable multi factor authentication to prevent access from attacker.
If you entered any financial information, check your bank and credit card statements to ensure no fraudulent activity has occurred.
Install anti-virus software and keep it up-to-date to prevent future phishing attempts.
Be sure to also spread the word to your friends and family about this phishing site, and always be cautious when providing personal or financial information online.

Why Phishing is Dangerous

Phishing is dangerous because it can result in identity theft, financial loss, and other negative consequences. Criminals can use your personal information to open new bank accounts, apply for loans or credit cards, and even file tax returns in your name. Phishing attacks are becoming increasingly sophisticated and difficult to detect, so it is important to be cautious and vigilant when providing personal information online.

Conclusion

Phishing attacks are a serious threat that can result in significant financial and personal losses. If you have encountered a similar website, be sure to take immediate action to protect your personal and financial information. By reporting the site and spreading the word about the dangers of phishing, you can help prevent others from falling victim to these scams.

NOLA Defense

Search This Blog