***need immediate assitance***


#1

We are a banking institution that has received thousands of reports of our members getting spoofed text messages that direct them to a website that is hosted at Dreamhost and then redirects from that link at Dreamhost to another site. We are trying to get this shutdown and since the redirect happens from a Dreamhost server that is where we need to start. The hacker/spoofer is sending out texts that look like this "Space Coast Credit Union) Activity–Alert: Please review by following:handasapc.com/updat6.html

This site then redirect to another site that prompts them to enter there username and password.

Please call me at 3 2 1 7 5 2 2 2 2 2 ext5980 As soon as humanly possible to get this shut down.

Robbie Parsons
Network Admin II
Space Coast Credit Union


#2

The authoritative DNS is from 1and1. You should make a report there as well.

As for this forum, it’s mainly a customer discussion group. You should use this form: https://www.dreamhost.com/support/

Although instead of selecting Support in the dropdown I think I would pick Other and then address the text of my message to the security and abuse team.

Don’t know if there is anything they can do, unfortunately anyone can put up any website and it’s hard to prove they are not legit.


#3

http://abuse.dreamhost.com/