Anatomy of a Sophisticated Phishing Campaign: The usps.otognluguws.top Case Study

The USPS package has arrived at the warehouse and cannot be delivered due to incomplete address information. Please confirm your address in the link within 12 hours. http://usps.otognluguws.top

Likes and Cards: Dissecting Instagram's Algorithm in the Facilitation of Carding Activities

This paper investigates the role of Instagram's algorithm in possibly facilitating the promotion of carding activities. It aims to understand how the proliferation of carding practices can ripple across the digital landscape, affecting consumer trust, financial security, and the integrity of online transactions.

Investigating the IP and Hosting Details of Six Pivotal Phishing Scams

Analysis for one IP and six domains include usp.exprous.com, traci.exprous.com, mo.ctm-1.top, wrm.termsus.com, wrm.exprous.com, and track.termsus.com that mimic the services they impersonate, such as USPS and Walmart in a complicated yet interesting structure

Fake USPS Service Scam Using Brazilian government Domain [urucuia.mg.gov.br]

A Comprehensive Analysis of a domain that once belonged to the state of Minas Gerais in Brazil is now used in a phishing operation under http://urucuia.mg.gov.br/padrao/us/USPS.

Fake USPS Service Scam Using Argentina's Domain [carloslaurenz.com.ar]

This investigation is on a URL flagged as a phishing operation masquerading as a USPS service https://carloslaurenz[.]com[.]ar/fotos/us.

Phishing Activity Using Fake eBay and USPS Websites Domain Yaraticilikfest[.]anabilim.k12[.]tr

An official Turkish school website is being used in a phishing scam to impose USPS and eBay and redirect customers after to a Japanese website.

Malicious IP Associated with more than 60 Subdomains: 47.251.33[.]8

The examination reveals the utilization of an IP linked to Alibaba Cloud LLC infrastructure, strategically deploying deceptive domains like "usps.com.wtpackege.top" to exploit the trust placed in recognized entities through subtle manipulations in subdomains and top-level domains.

The Dual-Edged Sword of Cloudflare Workers: Leveraging Serverless Computing for Phishing Attacks

This paper explores the architecture of Cloudflare Workers, their legitimate use cases, and how their features can be twisted for phishing.

We discuss the vulnerabilities within Workers and provide recommendations for mitigating these threats

USPS Squatting Campaign - Domain: vxhbs[.]cfd

Sender Claim: USPS package delivery notification.

Message: A package needs to be updated with the correct delivery address to avoid being returned to the sender.

Action Requested: Update the delivery address via the provided link.