On 27 Aug 2020, at 13:46, micah anderson via mailop <[email protected]> wrote: > Benoit Panizzon via mailop <[email protected]> writes: > >> In the last couple of days we face an increasing amount of phishing >> sites hosted @ firebasestorage.googleapis.com targeting our customers. > > We have been hit by the same, although strangely it has not been > happening so much recently.
At $workplace we ended up putting a SpamAssassin rule for these, and hang the false positives (we've had two reported). I know we're rejecting some marketing email (Jet2 Holidays being one example). The sheer number of messages mentioning the firebase storage API in URLs in the message - whether clicky-linky, or others like embedded images has been fairly astonishing. There was another cloud storage widget being used in phish that reared up this morning but I can't remember what it was. It seems that it's "tactic du jour". Graeme _______________________________________________ mailop mailing list [email protected] https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop
