Comments on: Introducing the first PhishTank moderators

by: John Roberts

Fri, 08 Dec 2006 19:24:32 +0000

Christopher, and others: Mike and I are working on more explicit way of asking for help. We definitely want to encourage and enable all interested parties who’ve demonstrated their effectiveness (as you have) to pitch in multiple ways (if you want!).

All the current moderators were asked, based on activity on the site and some additional queries and other indicators of interest along the way. There is no quota or limit, and no slight intended for those who are making PhishTank work without acting as moderators — voting and submitting are critical engines of the site!

More soon.

by: Christopher

Fri, 08 Dec 2006 17:35:24 +0000

So, is it strictly a ‘don’t call us, we’ll call you’ arrangement for appointments of new moderators, or can people apply to line up for approval to moderator status? I’d very much like to donate some of my free time to sifting through submissions, tidying up and so forth, I was one of the earliest members to sign up and I’ve always thought sites such as this are a great idea. I’m all for the idea, the principle and the community-based submissions, and I’d love to do my bit in return, but there doesn’t seem to be any way to give that little bit more aside from going through all the recently-submitteds and clicking ‘Is’ or ‘Is Not’.

Anybody have any light they’d care to shed on this subject?

by: Eebee Jeebeez

Thu, 30 Nov 2006 17:39:21 +0000

Gary,

Google “London Antiphishing Society” and read up on how to gum up phisher’s dirty deeds.

by: John Roberts

Wed, 29 Nov 2006 21:33:25 +0000

I wanted to let people know that Char is also now a moderator. Welcome, and thanks.

by: Ilgaz

Mon, 27 Nov 2006 22:36:39 +0000

Gary, these people are criminals. They use hi tech (?) but they are not different from ordinary criminals. You should not deal with them directly.

Best thing you can do is asking your bank/organisation to check phishtank.com to see open data which would cost them millions dollars worth of customer trust. I have personally mailed an American bank asking about a single website hosted 20-30 phishing pages which targets them and if they are aware of the phishtank offering the data free of charge.

Also majority of those URLs you see are hacked websites, they have no clue (generally) that the pages exist there, “attacking” them could mean attacking a k12 website or a very critical website.

If you want to do something about the phishing mails you get, there is http://www.spamcop.net , it will also report the phishing site, if you reference your phish report URL as “additional comment” to HOSTING PROVIDER of phish domain (not the spammers ISP), you can get it taken down very quick.

Be clear like “phishing site up and running, see (phishtank url showing the phish)”

Please note, Spamcop.COM has nothing to do with Spamcop.net and believed to be run by spammers themselves.

by: Ilgaz

Sat, 25 Nov 2006 13:49:24 +0000

Here is perfect example why moderators are needed. It also shows the “poor hacked webserver” story is generally a lie.

gitiks.ws entries show a fraud “mortgage” in screenshot tab (funchords submissions), when you check site in frame, they are indeed phishing pages.

I think it is time to use mod powers

by: susato

Sat, 25 Nov 2006 09:48:59 +0000

Congratulations to the moderators - we salute you! Many thanks for your contributions so far and your willingness to go beyond what you’ve done already, to help the rest of us.

by: MASA

Fri, 24 Nov 2006 17:27:42 +0000

Congrats to the new moderators!

You’re doing a great job!

by: Gary

Fri, 24 Nov 2006 17:15:43 +0000

I need some info about “attacking” these phishers. Anyone have any techniques ?