Phishing is a type of social engineering attack often used to steal user data, including login credentials and credit card numbers. It occurs when an attacker, masquerading as a trusted entity, dupes a victim into opening an email, instant message, or text message. The recipient is then tricked into clicking a malicious link, which can lead to the installation of malware, the freezing of the system as part of a ransomware attack or the revealing of sensitive information.
On Thursday, September 7th a group of scammers sent emails phishing for CloudFlare credentials. The email appears to come from “Cloudflare Abuse Department”, but you will see that the email did not actually come from Cloudflare. It came from a freshdesk email account which is not associated with Cloudflare.
The email also contains a link to lead the recipient to review the complaint and takes them to https://cloudflarecompliancedept.site/support/.
The site looks like the Official Cloudflare login page and even has an SSL certificate that appears to be valid. Upon investigation, the SSL certificate is a free certificate that can be obtained easily.
You can even find the fake freshdesk login page by visiting https://cloudflareabuse.freshdesk.com/support/home
This phishing attempt was very well thought out, all the way down to the smallest detail. To the average person opening their emails, it would be very difficult to identify this as malicious.
While the malicious email looked completely legit, there was one key giveaway: The mail was sent from a domain that is not associated with Cloudflare.
If you received an email from email@example.com, report it as phishing by notifying your email provider. Then delete it.
If you do click on the malicious link, do not attempt to log into the account.
If, unfortunately, you fell for the scam and granted permission to the hackers, get in touch with CloudFlare directly. While you’re at it, it’s a good idea to change your passwords.
Here is the official Cloudflare link to visit if you encounter the scam:
Rest assured that the eBoundHost JetRails eCommerce Team is actively working with Cloudflare on this discovery. As of 12:54 PM CST, it appears that the malicious domain was taken down. That does not mean the original attacker is not still active. Please take caution with any emails and access points and reach out to the JetRails team with any questions or concerns: 888-554-9990 or firstname.lastname@example.org
Reliability and customer service that is rare and refreshing. We have been using eBoundHost for several years and unlike many companies who's service wanes over the years, the staff at eBound has consistently delivered top notch performance. Bravo!
Fast, reliable, full of features... Over the years, I have used more than a dozen hosts, both the big ones and smaller ones; eBoundHost.com is by far my favorite.
eBoundHost provides the very best service I've experienced in hosting. It takes less than 24h to get an answer to any question. They're great.
I came to eBoundHost after a very bad experience with a so called "big boy" - you know one of those places you are only a number. I have been a satisfied customer for more than 4 years now. The support is second to none.
Every time I have contacted my host provider. They have responded with speed, courtesy and accuracy they are professional and a joy to work with.
eBoundHost.com has the best customer service in ANY industry. Their support staff answers phone calls and emails immediately and they have time and time again gone over and above their responsibilities to make sure I am taken care of and that my clients are happy. I have many websites hosted here from small business to corporate level and have dealt with many hosting companies in the industry and eBoundHost.com is by far the BEST hosting provider there is. Great prices, great service, great hosting packages, and a killer reseller program! THANK YOU AGAIN :)
SUPER SUPPORT - even during "off hours" - Sundays & holidays. Responses have always been within minutes of the initial call or email. The BEST vendor I have ever used in my 10 plus years as a webhosting services consumer.
I have been a customer since December of 2001, and the service has been nothing less than excellent. I would recommend eBoundHost highly.
I was just looking over our emails and adding up how much time you guys have taken to get me squared away with my new eboundhost account. I can't tell you what a relief it is to have fast, dependable hosting and the kind of immediate support I've gotten from you, after having struggled with a sub-standard host for years. eboundhost has, in the short time I've been with you, already saved me hundreds of dollars of billable time. My thanks.
eBoundHost is the best. I have dealt with many hosting providers over the last 10 years. eBoundHost surpasses them all. Absolutely the highest level of quality service anywhere. Do yourself a big favor and sign on with eBoundHost.
1) Their technical support people are always available to help with questions. 2)Server and network speed excellent. 3)Everything works great. 4)I highly recommend them!!!Thank you.
EXCELLENT across the board, super quick reply to questions (about 15-30min). Outstanding! Loads of features, excellent price! Loads of space and bandwidth!
eBoundHost is really the best hosting service in today's marketplace. Fast and efficient customer service with excellent IT knowledge. Good price and many bundled extra options. Highly recommended!
I have worked with many hosting companies over the course of my years in the website building and design business. I can say with certainty that eBoundHost.com is among the elite companies. I would and have recommended them to anyone.