Can this be used by criminals to get your credit details?
http://bit.ly/3HOYEmN
Got this by SMS on Sunday?
AusPost: Your parcel LK164350842AU has been put on hold. To redeliver:
http://bit.ly/3HOYEmN
Australia post list it as a scam site
https://tinyurl.com/2jk54wyh
I have reported it to the registrar and DigiCert I believe they look
into said "certificates"
https://www.digicert.com
--
Petzl
'we are a Christian nation' with 'Christian values' to which newcomers
should conform, while enjoying freedom for their own beliefs.
Pauline Hanson.

If you look at Australia it is largely a Christian country with
Christian norms. The things we do, the way our political parties
behave, have, if not an activist Christianity about it, Christian
ideals.
Paul Keating

Petzl <petzlx@gmail.com> wrote

> Can this be used by criminals to get your credit details?

Only if you are stupid enough to pay
them anything say to get it delivered.

> http://bit.ly/3HOYEmN
> Got this by SMS on Sunday?
> AusPost: Your parcel LK164350842AU has been put on hold. To redeliver:
> http://bit.ly/3HOYEmN
> Australia post list it as a scam site
> https://tinyurl.com/2jk54wyh
> I have reported it to the registrar and DigiCert I believe they look
> into said "certificates"
> https://www.digicert.com

On Mon, 13 Feb 2023 14:57:41 +1100, "Rod Speed"
<rod.speed.aaa@gmail.com> wrote:

>Petzl <petzlx@gmail.com> wrote
>
>> Can this be used by criminals to get your credit details?
>
>Only if you are stupid enough to pay
>them anything say to get it delivered.
>
Yes as soon as I saw the $1.25 credit card charge to send it express
post, I twigged, but them showing a secure site Digital certificate
made me look at it then report it as a criminal scam,
I see that digital certificate has been revoked.
get this warning now
"This site can’t provide a secure connection
order.m-auspost.org sent an invalid response."

>> http://bit.ly/3HOYEmN
>> Got this by SMS on Sunday?
>> AusPost: Your parcel LK164350842AU has been put on hold. To redeliver:
>> http://bit.ly/3HOYEmN
>> Australia post list it as a scam site
<https://auspost.com.au/about-us/about-our-site/online-security-scams-fraud/scam-alerts>
>> I have reported it to the registrar and DigiCert I believe they look
>> into said "certificates"
>> https://www.digicert.com
--
Petzl
Good lawyers know the law
Great lawyers know the judge

Am 13.02.2023 um 11:09:52 Uhr schrieb Petzl:

> Subject: Scam site has a valid security certificate

Normal TLS certificates can be obtained for free from letsencrypt and
others. Don't trust a website because it has thi certificate"

Please stop using link shorteners.
these are annoying and avoid that I can see where it points before
opening it.

On Mon, 13 Feb 2023 09:19:34 +0100, Marco Moock <mo01@posteo.de>
wrote:

>Am 13.02.2023 um 11:09:52 Uhr schrieb Petzl:
>
>> Subject: Scam site has a valid security certificate
>
>Normal TLS certificates can be obtained for free from letsencrypt and
>others. Don't trust a website because it has thi certificate"
>
Thanks for the info, the Certificate was provided by Cloudfare though
Their abuse morons had no idea and claimed it wasn't them?
But seems to me that "DigiCert Support" knocked it out?

>Please stop using link shorteners.
>these are annoying and avoid that I can see where it points before
>opening it.
>
Usually I provide both, because a lot of news readers word wrap URL's.
The mobile phone SMS always use link shorteners, I know those that
post from experience gauge whether posters can be trusted, I use a
very high degree of security when browsing so far not any real
problems other than the occasional bit of porn filth.
--
Petzl
Jesus “taught with authority” (Matthew 7:29), and the risen Lord gave
his Apostles a share in his authority when he commissioned them to
make disciples from all the nations by teaching what he had commanded
them (Matthew 28:18–20).

Tiberius Caesar who reigned for 22 years,
and his last year was AD 37. wrote:
"The extremities of Spain, the various parts of Gaul, the regions of
Britain which have never been penetrated by Roman arms, have received
the religion of Christ."

Am 13.02.2023 um 19:39:54 Uhr schrieb Petzl:

> On Mon, 13 Feb 2023 09:19:34 +0100, Marco Moock <mo01@posteo.de>
> wrote:
>
> >Am 13.02.2023 um 11:09:52 Uhr schrieb Petzl:
> >
> >> Subject: Scam site has a valid security certificate
> >
> >Normal TLS certificates can be obtained for free from letsencrypt and
> >others. Don't trust a website because it has thi certificate"
> >
> Thanks for the info, the Certificate was provided by Cloudfare though
> Their abuse morons had no idea and claimed it wasn't them?
> But seems to me that "DigiCert Support" knocked it out?

A certificate is only to proof that the domain/server is being
controlled by the person who applied for the cert.
It doesn't say anything about the content of the webserver.

Normal certificates are issued automatically and anonymously, so they
can be easily used by scammers too.

Sometimes cert authorities revocate certs for scam websites, but this
might take some time and somebody needs to tell them about this.

On Mon, 13 Feb 2023 10:13:44 +0100, Marco Moock <mo01@posteo.de>
wrote:

>Am 13.02.2023 um 19:39:54 Uhr schrieb Petzl:
>
>> On Mon, 13 Feb 2023 09:19:34 +0100, Marco Moock <mo01@posteo.de>
>> wrote:
>>
>> >Am 13.02.2023 um 11:09:52 Uhr schrieb Petzl:
>> >
>> >> Subject: Scam site has a valid security certificate
>> >
>> >Normal TLS certificates can be obtained for free from letsencrypt and
>> >others. Don't trust a website because it has thi certificate"
>> >
>> Thanks for the info, the Certificate was provided by Cloudfare though
>> Their abuse morons had no idea and claimed it wasn't them?
>> But seems to me that "DigiCert Support" knocked it out?
>
>A certificate is only to proof that the domain/server is being
>controlled by the person who applied for the cert.
>It doesn't say anything about the content of the webserver.
>
>Normal certificates are issued automatically and anonymously, so they
>can be easily used by scammers too.
>
>Sometimes cert authorities revocate certs for scam websites, but this
>might take some time and somebody needs to tell them about this.
>
I realised it was a scam and found Australia post had it listed for
months
<https://auspost.com.au/about-us/about-our-site/online-security-scams-fraud/scam-alerts>
or https://tinyurl.com/uq4q2rb
So I reported my SMS to the registrar of site "name.com" and found the
certificate was issued by cloudfare so I told them the then sent
reports have to be on their Website so I did they didn't understand,
doubt if they ever do?
Anyhow reported it along with Australia Post link showing it a scam.
Seemed pretty quick it's certificate was taken down by
"DigiCert Support" this would of been Sunday in the US so well done.
Hopefully the police with haul the scammers arse into a Bombay prison?
--
Petzl
Good lawyers know the law
Great lawyers know the judge

On Tue, 14 Feb 2023 05:19:52 +1100, Petzl <petzlx@gmail.com> wrote:

> On Mon, 13 Feb 2023 10:13:44 +0100, Marco Moock <mo01@posteo.de>
> wrote:
>
>> Am 13.02.2023 um 19:39:54 Uhr schrieb Petzl:
>>
>>> On Mon, 13 Feb 2023 09:19:34 +0100, Marco Moock <mo01@posteo.de>
>>> wrote:
>>>
>>> >Am 13.02.2023 um 11:09:52 Uhr schrieb Petzl:
>>> >
>>> >> Subject: Scam site has a valid security certificate
>>> >
>>> >Normal TLS certificates can be obtained for free from letsencrypt and
>>> >others. Don't trust a website because it has thi certificate"
>>> >
>>> Thanks for the info, the Certificate was provided by Cloudfare though
>>> Their abuse morons had no idea and claimed it wasn't them?
>>> But seems to me that "DigiCert Support" knocked it out?
>>
>> A certificate is only to proof that the domain/server is being
>> controlled by the person who applied for the cert.
>> It doesn't say anything about the content of the webserver.
>>
>> Normal certificates are issued automatically and anonymously, so they
>> can be easily used by scammers too.
>>
>> Sometimes cert authorities revocate certs for scam websites, but this
>> might take some time and somebody needs to tell them about this.
>>
> I realised it was a scam and found Australia post had it listed for
> months
> <https://auspost.com.au/about-us/about-our-site/online-security-scams-fraud/scam-alerts>
> or https://tinyurl.com/uq4q2rb
> So I reported my SMS to the registrar of site "name.com" and found the
> certificate was issued by cloudfare so I told them the then sent
> reports have to be on their Website so I did they didn't understand,
> doubt if they ever do?
> Anyhow reported it along with Australia Post link showing it a scam.
> Seemed pretty quick it's certificate was taken down by
> "DigiCert Support" this would of been Sunday in the US so well done.

> Hopefully the police with haul the scammers arse into a Bombay prison?

No chance of that.

On Tue, 14 Feb 2023 07:19:37 +1100, "Rod Speed"
<rod.speed.aaa@gmail.com> wrote:

>On Tue, 14 Feb 2023 05:19:52 +1100, Petzl <petzlx@gmail.com> wrote:
>
>> On Mon, 13 Feb 2023 10:13:44 +0100, Marco Moock <mo01@posteo.de>
>> wrote:
>>
>>> Am 13.02.2023 um 19:39:54 Uhr schrieb Petzl:
>>>
>>>> On Mon, 13 Feb 2023 09:19:34 +0100, Marco Moock <mo01@posteo.de>
>>>> wrote:
>>>>
>>>> >Am 13.02.2023 um 11:09:52 Uhr schrieb Petzl:
>>>> >
>>>> >> Subject: Scam site has a valid security certificate
>>>> >
>>>> >Normal TLS certificates can be obtained for free from letsencrypt and
>>>> >others. Don't trust a website because it has thi certificate"
>>>> >
>>>> Thanks for the info, the Certificate was provided by Cloudfare though
>>>> Their abuse morons had no idea and claimed it wasn't them?
>>>> But seems to me that "DigiCert Support" knocked it out?
>>>
>>> A certificate is only to proof that the domain/server is being
>>> controlled by the person who applied for the cert.
>>> It doesn't say anything about the content of the webserver.
>>>
>>> Normal certificates are issued automatically and anonymously, so they
>>> can be easily used by scammers too.
>>>
>>> Sometimes cert authorities revocate certs for scam websites, but this
>>> might take some time and somebody needs to tell them about this.
>>>
>> I realised it was a scam and found Australia post had it listed for
>> months
>> <https://auspost.com.au/about-us/about-our-site/online-security-scams-fraud/scam-alerts>
>> or https://tinyurl.com/uq4q2rb
>> So I reported my SMS to the registrar of site "name.com" and found the
>> certificate was issued by cloudfare so I told them the then sent
>> reports have to be on their Website so I did they didn't understand,
>> doubt if they ever do?
>> Anyhow reported it along with Australia Post link showing it a scam.
>> Seemed pretty quick it's certificate was taken down by
>> "DigiCert Support" this would of been Sunday in the US so well done.
>
>> Hopefully the police with haul the scammers arse into a Bombay prison?
>
>No chance of that.
>
I've had a little success in pointing out to ISP's criminals who they
have then taken to the courts and won justice.
--
Petzl
Good lawyers know the law
Great lawyers know the judge

Marco Moock wrote:
>
> A certificate is only to proof that the domain/server is being
> controlled by the person who applied for the cert.
> It doesn't say anything about the content of the webserver.
>
> Normal certificates are issued automatically and anonymously, so they
> can be easily used by scammers too.
>
> Sometimes cert authorities revocate certs for scam websites, but this
> might take some time and somebody needs to tell them about this.
>

My web hosting provider keeps send me e-mails to get a certificate so
that Google won't bury it in the search results. Anybody can go https
for a fee.

On Tue, 14 Feb 2023 12:19:18 +1100, Petzl <petzlx@gmail.com> wrote:

> On Tue, 14 Feb 2023 07:19:37 +1100, "Rod Speed"
> <rod.speed.aaa@gmail.com> wrote:
>
>> On Tue, 14 Feb 2023 05:19:52 +1100, Petzl <petzlx@gmail.com> wrote:
>>
>>> On Mon, 13 Feb 2023 10:13:44 +0100, Marco Moock <mo01@posteo.de>
>>> wrote:
>>>
>>>> Am 13.02.2023 um 19:39:54 Uhr schrieb Petzl:
>>>>
>>>>> On Mon, 13 Feb 2023 09:19:34 +0100, Marco Moock <mo01@posteo.de>
>>>>> wrote:
>>>>>
>>>>> >Am 13.02.2023 um 11:09:52 Uhr schrieb Petzl:
>>>>> >
>>>>> >> Subject: Scam site has a valid security certificate
>>>>> >
>>>>> >Normal TLS certificates can be obtained for free from letsencrypt
>>>>> and
>>>>> >others. Don't trust a website because it has thi certificate"
>>>>> >
>>>>> Thanks for the info, the Certificate was provided by Cloudfare though
>>>>> Their abuse morons had no idea and claimed it wasn't them?
>>>>> But seems to me that "DigiCert Support" knocked it out?
>>>>
>>>> A certificate is only to proof that the domain/server is being
>>>> controlled by the person who applied for the cert.
>>>> It doesn't say anything about the content of the webserver.
>>>>
>>>> Normal certificates are issued automatically and anonymously, so they
>>>> can be easily used by scammers too.
>>>>
>>>> Sometimes cert authorities revocate certs for scam websites, but this
>>>> might take some time and somebody needs to tell them about this.
>>>>
>>> I realised it was a scam and found Australia post had it listed for
>>> months
>>> <https://auspost.com.au/about-us/about-our-site/online-security-scams-fraud/scam-alerts>
>>> or https://tinyurl.com/uq4q2rb
>>> So I reported my SMS to the registrar of site "name.com" and found the
>>> certificate was issued by cloudfare so I told them the then sent
>>> reports have to be on their Website so I did they didn't understand,
>>> doubt if they ever do?
>>> Anyhow reported it along with Australia Post link showing it a scam.
>>> Seemed pretty quick it's certificate was taken down by
>>> "DigiCert Support" this would of been Sunday in the US so well done.
>>
>>> Hopefully the police with haul the scammers arse into a Bombay prison?
>>
>> No chance of that.
>>
> I've had a little success in pointing out to ISP's criminals who they
> have then taken to the courts and won justice.

Not wwhen the criminals are in Bombay you haven't.

On Tue, 14 Feb 2023 14:31:18 +1100, "Rod Speed"
<rod.speed.aaa@gmail.com> wrote:

>On Tue, 14 Feb 2023 12:19:18 +1100, Petzl <petzlx@gmail.com> wrote:
>
>> On Tue, 14 Feb 2023 07:19:37 +1100, "Rod Speed"
>> <rod.speed.aaa@gmail.com> wrote:
>>
>>> On Tue, 14 Feb 2023 05:19:52 +1100, Petzl <petzlx@gmail.com> wrote:
>>>
>>>> On Mon, 13 Feb 2023 10:13:44 +0100, Marco Moock <mo01@posteo.de>
>>>> wrote:
>>>>
>>>>> Am 13.02.2023 um 19:39:54 Uhr schrieb Petzl:
>>>>>
>>>>>> On Mon, 13 Feb 2023 09:19:34 +0100, Marco Moock <mo01@posteo.de>
>>>>>> wrote:
>>>>>>
>>>>>> >Am 13.02.2023 um 11:09:52 Uhr schrieb Petzl:
>>>>>> >
>>>>>> >> Subject: Scam site has a valid security certificate
>>>>>> >
>>>>>> >Normal TLS certificates can be obtained for free from letsencrypt
>>>>>> and
>>>>>> >others. Don't trust a website because it has thi certificate"
>>>>>> >
>>>>>> Thanks for the info, the Certificate was provided by Cloudfare though
>>>>>> Their abuse morons had no idea and claimed it wasn't them?
>>>>>> But seems to me that "DigiCert Support" knocked it out?
>>>>>
>>>>> A certificate is only to proof that the domain/server is being
>>>>> controlled by the person who applied for the cert.
>>>>> It doesn't say anything about the content of the webserver.
>>>>>
>>>>> Normal certificates are issued automatically and anonymously, so they
>>>>> can be easily used by scammers too.
>>>>>
>>>>> Sometimes cert authorities revocate certs for scam websites, but this
>>>>> might take some time and somebody needs to tell them about this.
>>>>>
>>>> I realised it was a scam and found Australia post had it listed for
>>>> months
>>>> <https://auspost.com.au/about-us/about-our-site/online-security-scams-fraud/scam-alerts>
>>>> or https://tinyurl.com/uq4q2rb
>>>> So I reported my SMS to the registrar of site "name.com" and found the
>>>> certificate was issued by cloudfare so I told them the then sent
>>>> reports have to be on their Website so I did they didn't understand,
>>>> doubt if they ever do?
>>>> Anyhow reported it along with Australia Post link showing it a scam.
>>>> Seemed pretty quick it's certificate was taken down by
>>>> "DigiCert Support" this would of been Sunday in the US so well done.
>>>
>>>> Hopefully the police with haul the scammers arse into a Bombay prison?
>>>
>>> No chance of that.
>>>
>> I've had a little success in pointing out to ISP's criminals who they
>> have then taken to the courts and won justice.
>
>Not wwhen the criminals are in Bombay you haven't.

No USA and only 3 in 30 years of reporting scammers.
Another today by SMS same fingerprints as last one!
phishing scam to mobile phone
myGov: Your tax income of $8,634.85 is ready to claim. Visit
https://refunds-mygv.info/ and complete the process.

Name: refunds-mygv.info
IP: 104.21.66.52, 172.67.156.251
Domain: refunds-mygv.info abuse[AT]publicdomainregistry[GOT]com

MyGov Australia has scam warning
<https://www.servicesaustralia.gov.au/mygov-refund-email-scam>
or https://tinyurl.com/2kn4hkgu

support[AT]digicert[DOT]com
just update of another certificate scam Google ??
Certificate info
Common Name (CN) *.refunds-mygv.info
Organization (O) <Not Part Of Certificate>
Organizational Unit (OU) <Not Part Of Certificate>
Issued By
Common Name (CN) GTS CA 1P5
Organization (O) Google Trust Services LLC
Organizational Unit (OU) <Not Part Of Certificate>
Validity Period
Issued On Sunday, February 12, 2023 at 4:57:19 AM
Expires On Saturday, May 13, 2023 at 3:57:18 AM
Fingerprints
SHA-256 Fingerprint 53 44 8D EB B8 5B C8 A8 EB 45 F8 AB 42 CE 64
D1
AB 6A 7E 8F 23 71 50 7A CE 31 68 92 CA 25 DF 2A
SHA-1 Fingerprint 20 09 5E 2C 0A B3 02 75 A2 D9 A8 EB 9A B5 D2
0E
4C FA 95 EB
--
Petzl
Good lawyers know the law
Great lawyers know the judge

On Tue, 14 Feb 2023 11:22:35 +0800, Ozix <ozix@xizo.am> wrote:

>Marco Moock wrote:
>>
>> A certificate is only to proof that the domain/server is being
>> controlled by the person who applied for the cert.
>> It doesn't say anything about the content of the webserver.
>>
>> Normal certificates are issued automatically and anonymously, so they
>> can be easily used by scammers too.
>>
>> Sometimes cert authorities revocate certs for scam websites, but this
>> might take some time and somebody needs to tell them about this.
>>
>
>My web hosting provider keeps send me e-mails to get a certificate so
>that Google won't bury it in the search results. Anybody can go https
>for a fee.
>
I just downed another criminal scam SMS site!

Scam warning of site starting 2021 from MyGov
<https://www.servicesaustralia.gov.au/mygov-refund-email-scam>
https://tinyurl.com/2kn4hkgu
myGov refund email scam
11 February 2021
This scam email will tell you myGov owes you a refund. It asks you to
give personal details via a form or link.
****************************
"myGov: Your tax income of $8,634.85 is ready to claim. Visit
https://refunds-mygv.info/ and complete the process. "
Google actually issued the certificate
I get this
"Warning – phishing (web forgery) suspected
The site you are trying to visit has been identified as a forgery,
intended to trick you into disclosing financial, personal or other
sensitive information.

You can continue to https://refunds-mygv.info/ at your own risk."
--
Petzl
Good lawyers know the law
Great lawyers know the judge

On Thu, 16 Feb 2023 08:27:15 +1100, Petzl <petzlx@gmail.com> wrote:

> On Tue, 14 Feb 2023 11:22:35 +0800, Ozix <ozix@xizo.am> wrote:
>
>> Marco Moock wrote:
>>>
>>> A certificate is only to proof that the domain/server is being
>>> controlled by the person who applied for the cert.
>>> It doesn't say anything about the content of the webserver.
>>>
>>> Normal certificates are issued automatically and anonymously, so they
>>> can be easily used by scammers too.
>>>
>>> Sometimes cert authorities revocate certs for scam websites, but this
>>> might take some time and somebody needs to tell them about this.
>>>
>>
>> My web hosting provider keeps send me e-mails to get a certificate so
>> that Google won't bury it in the search results. Anybody can go https
>> for a fee.
>>
> I just downed another criminal scam SMS site!
>
> Scam warning of site starting 2021 from MyGov
> <https://www.servicesaustralia.gov.au/mygov-refund-email-scam>
> https://tinyurl.com/2kn4hkgu
> myGov refund email scam
> 11 February 2021
> This scam email will tell you myGov owes you a refund. It asks you to
> give personal details via a form or link.
> ****************************
> "myGov: Your tax income of $8,634.85 is ready to claim. Visit
> https://refunds-mygv.info/ and complete the process. "
> Google actually issued the certificate
> I get this
> "Warning – phishing (web forgery) suspected
> The site you are trying to visit has been identified as a forgery,
> intended to trick you into disclosing financial, personal or other
> sensitive information.
>
> You can continue to https://refunds-mygv.info/ at your own risk."

Got one myself yesterday evening.

SMS allegedly from .Mum

I am at Coles and brought the wrong card with me.
Can you quickly send me 350 please, I will pay you back when i get home.
Bsb - 670-864 Acc - 17443518

That's UBank. I have just reported it to them.

On Fri, 17 Feb 2023 08:46:34 +1100, "Rod Speed"
<rod.speed.aaa@gmail.com> wrote:

>On Thu, 16 Feb 2023 08:27:15 +1100, Petzl <petzlx@gmail.com> wrote:
>
>> On Tue, 14 Feb 2023 11:22:35 +0800, Ozix <ozix@xizo.am> wrote:
>>
>>> Marco Moock wrote:
>>>>
>>>> A certificate is only to proof that the domain/server is being
>>>> controlled by the person who applied for the cert.
>>>> It doesn't say anything about the content of the webserver.
>>>>
>>>> Normal certificates are issued automatically and anonymously, so they
>>>> can be easily used by scammers too.
>>>>
>>>> Sometimes cert authorities revocate certs for scam websites, but this
>>>> might take some time and somebody needs to tell them about this.
>>>>
>>>
>>> My web hosting provider keeps send me e-mails to get a certificate so
>>> that Google won't bury it in the search results. Anybody can go https
>>> for a fee.
>>>
>> I just downed another criminal scam SMS site!
>>
>> Scam warning of site starting 2021 from MyGov
>> <https://www.servicesaustralia.gov.au/mygov-refund-email-scam>
>> https://tinyurl.com/2kn4hkgu
>> myGov refund email scam
>> 11 February 2021
>> This scam email will tell you myGov owes you a refund. It asks you to
>> give personal details via a form or link.
>> ****************************
>> "myGov: Your tax income of $8,634.85 is ready to claim. Visit
>> https://refunds-mygv.info/ and complete the process. "
>> Google actually issued the certificate
>> I get this
>> "Warning – phishing (web forgery) suspected
>> The site you are trying to visit has been identified as a forgery,
>> intended to trick you into disclosing financial, personal or other
>> sensitive information.
>>
>> You can continue to https://refunds-mygv.info/ at your own risk."
>
>Got one myself yesterday evening.
>
>SMS allegedly from .Mum
>
>I am at Coles and brought the wrong card with me.
>Can you quickly send me 350 please, I will pay you back when i get home.
>Bsb - 670-864 Acc - 17443518
>
>That's UBank. I have just reported it to them.
>
Good hopfully the nail the arse!
--
Petzl
Good lawyers know the law
Great lawyers know the judge

Rod Speed wrote:
> On Thu, 16 Feb 2023 08:27:15 +1100, Petzl <petzlx@gmail.com> wrote:
>
>> On Tue, 14 Feb 2023 11:22:35 +0800, Ozix <ozix@xizo.am> wrote:
>>
>>> Marco Moock wrote:
>>>>
>>>> A certificate is only to proof that the domain/server is being
>>>> controlled by the person who applied for the cert.
>>>> It doesn't say anything about the content of the webserver.
>>>>
>>>> Normal certificates are issued automatically and anonymously, so they
>>>> can be easily used by scammers too.
>>>>
>>>> Sometimes cert authorities revocate certs for scam websites, but this
>>>> might take some time and somebody needs to tell them about this.
>>>>
>>>
>>> My web hosting provider keeps send me e-mails to get a certificate so
>>> that Google won't bury it in the search results. Anybody can go https
>>> for a fee.
>>>
>> I just downed another criminal scam SMS site!
>>
>> Scam warning of site starting 2021 from MyGov
>> <https://www.servicesaustralia.gov.au/mygov-refund-email-scam>
>>      https://tinyurl.com/2kn4hkgu
>> myGov refund email scam
>> 11 February 2021
>> This scam email will tell you myGov owes you a refund. It asks you to
>> give personal details via a form or link.
>> ****************************
>> "myGov: Your tax income of $8,634.85 is ready to claim. Visit
>> https://refunds-mygv.info/ and complete the process. "
>> Google actually issued the certificate
>> I get this
>> "Warning – phishing (web forgery) suspected
>> The site you are trying to visit has been identified as a forgery,
>> intended to trick you into disclosing financial, personal or other
>> sensitive information.
>>
>> You can continue to https://refunds-mygv.info/ at your own risk."
>
> Got one myself yesterday evening.
>
> SMS allegedly from .Mum
>
> I am at Coles and brought the wrong card with me.
> Can you quickly send me 350 please, I will pay you back when i get home.
> Bsb - 670-864  Acc - 17443518
>
> That's UBank. I have just reported it to them.

I've been getting it too. or else it says from 'son' addressed to 'dad'.
also get one (from son to mum or dad) that says lost his phone and gives
a borrowed phone number to call to make arrangements to send money for a
new phone.

--
https://tinyurl.com/Yosemite-Sam

FUCK PUTIN!!

On Fri, 17 Feb 2023 15:16:46 +1100, Yosemite Sam <felix@goaway.now> wrote:

> Rod Speed wrote:
>> On Thu, 16 Feb 2023 08:27:15 +1100, Petzl <petzlx@gmail.com> wrote:
>>
>>> On Tue, 14 Feb 2023 11:22:35 +0800, Ozix <ozix@xizo.am> wrote:
>>>
>>>> Marco Moock wrote:
>>>>>
>>>>> A certificate is only to proof that the domain/server is being
>>>>> controlled by the person who applied for the cert.
>>>>> It doesn't say anything about the content of the webserver.
>>>>>
>>>>> Normal certificates are issued automatically and anonymously, so they
>>>>> can be easily used by scammers too.
>>>>>
>>>>> Sometimes cert authorities revocate certs for scam websites, but this
>>>>> might take some time and somebody needs to tell them about this.
>>>>>
>>>>
>>>> My web hosting provider keeps send me e-mails to get a certificate so
>>>> that Google won't bury it in the search results. Anybody can go https
>>>> for a fee.
>>>>
>>> I just downed another criminal scam SMS site!
>>>
>>> Scam warning of site starting 2021 from MyGov
>>> <https://www.servicesaustralia.gov.au/mygov-refund-email-scam>
>>> https://tinyurl.com/2kn4hkgu
>>> myGov refund email scam
>>> 11 February 2021
>>> This scam email will tell you myGov owes you a refund. It asks you to
>>> give personal details via a form or link.
>>> ****************************
>>> "myGov: Your tax income of $8,634.85 is ready to claim. Visit
>>> https://refunds-mygv.info/ and complete the process. "
>>> Google actually issued the certificate
>>> I get this
>>> "Warning – phishing (web forgery) suspected
>>> The site you are trying to visit has been identified as a forgery,
>>> intended to trick you into disclosing financial, personal or other
>>> sensitive information.
>>>
>>> You can continue to https://refunds-mygv.info/ at your own risk."
>>
>> Got one myself yesterday evening.
>>
>> SMS allegedly from .Mum
>>
>> I am at Coles and brought the wrong card with me.
>> Can you quickly send me 350 please, I will pay you back when i get home.
>> Bsb - 670-864 Acc - 17443518

I forgot to mention no phone # the text comes from.

>> That's UBank. I have just reported it to them.
>
> I've been getting it too. or else it says from 'son' addressed to 'dad'.
> also get one (from son to mum or dad) that says lost his phone and gives
> a borrowed phone number to call to make arrangements to send money for a
> new phone.

Same BSB and account number ? Presumably not.

Rod Speed wrote:
> On Fri, 17 Feb 2023 15:16:46 +1100, Yosemite Sam <felix@goaway.now>
> wrote:
>
>> Rod Speed wrote:
>>> On Thu, 16 Feb 2023 08:27:15 +1100, Petzl <petzlx@gmail.com> wrote:
>>>
>>>> On Tue, 14 Feb 2023 11:22:35 +0800, Ozix <ozix@xizo.am> wrote:
>>>>
>>>>> Marco Moock wrote:
>>>>>>
>>>>>> A certificate is only to proof that the domain/server is being
>>>>>> controlled by the person who applied for the cert.
>>>>>> It doesn't say anything about the content of the webserver.
>>>>>>
>>>>>> Normal certificates are issued automatically and anonymously, so
>>>>>> they
>>>>>> can be easily used by scammers too.
>>>>>>
>>>>>> Sometimes cert authorities revocate certs for scam websites, but
>>>>>> this
>>>>>> might take some time and somebody needs to tell them about this.
>>>>>>
>>>>>
>>>>> My web hosting provider keeps send me e-mails to get a certificate so
>>>>> that Google won't bury it in the search results. Anybody can go https
>>>>> for a fee.
>>>>>
>>>> I just downed another criminal scam SMS site!
>>>>
>>>> Scam warning of site starting 2021 from MyGov
>>>> <https://www.servicesaustralia.gov.au/mygov-refund-email-scam>
>>>>      https://tinyurl.com/2kn4hkgu
>>>> myGov refund email scam
>>>> 11 February 2021
>>>> This scam email will tell you myGov owes you a refund. It asks you to
>>>> give personal details via a form or link.
>>>> ****************************
>>>> "myGov: Your tax income of $8,634.85 is ready to claim. Visit
>>>> https://refunds-mygv.info/ and complete the process. "
>>>> Google actually issued the certificate
>>>> I get this
>>>> "Warning – phishing (web forgery) suspected
>>>> The site you are trying to visit has been identified as a forgery,
>>>> intended to trick you into disclosing financial, personal or other
>>>> sensitive information.
>>>>
>>>> You can continue to https://refunds-mygv.info/ at your own risk."
>>>
>>> Got one myself yesterday evening.
>>>
>>> SMS allegedly from .Mum
>>>
>>> I am at Coles and brought the wrong card with me.
>>> Can you quickly send me 350 please, I will pay you back when i get
>>> home.
>>> Bsb - 670-864  Acc - 17443518
>
> I forgot to mention no phone # the text comes from.
>
>>> That's UBank. I have just reported it to them.
>>
>> I've been getting it too. or else it says from 'son' addressed to
>> 'dad'. also get one (from son to mum or dad) that says lost his phone
>> and gives a borrowed phone number to call to make arrangements to
>> send money for a new phone.
>
> Same BSB and account number ?  Presumably not.

no idea. i just delete them as soon as I get them

--
https://tinyurl.com/Yosemite-Sam

FUCK PUTIN!!

On Fri, 17 Feb 2023 17:35:29 +1100, Yosemite Sam <felix@goaway.now>
wrote:

>>>> Got one myself yesterday evening.
>>>>
>>>> SMS allegedly from .Mum
>>>>
>>>> I am at Coles and brought the wrong card with me.
>>>> Can you quickly send me 350 please, I will pay you back when i get
>>>> home.
>>>> Bsb - 670-864  Acc - 17443518
>>
>> I forgot to mention no phone # the text comes from.
>>
>>>> That's UBank. I have just reported it to them.
>>>
>>> I've been getting it too. or else it says from 'son' addressed to
>>> 'dad'. also get one (from son to mum or dad) that says lost his phone
>>> and gives a borrowed phone number to call to make arrangements to
>>> send money for a new phone.
>>
>> Same BSB and account number ?  Presumably not.
>
>no idea. i just delete them as soon as I get them
>
Just "share" in android to your email then report the website the
scammer uses, if you look at the web certificate report that also to
the certificate provider!
--
Petzl
Good lawyers know the law
Great lawyers know the judge