-
Notifications
You must be signed in to change notification settings - Fork 758
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
linodeobjects.com: badware #25369
Comments
That domain is object storage domain and also used for other purposes. Blocking it will block many other non-malicious links like |
What about the frequent intermediate redirection domains used in the chain? Here's a typical result from the "redirect path" extension in chrome once you click the linodeobjects.com link (I redacted the URLs to not include full links):
|
Just now, I had another (similar) scam link that starts with
but also has intermediate links to settleworldcode.com and others. I guess the scammers aren't just using linodeobjects.com. |
I need exact links to reproduce the issue, otherwise I can't do much with just these information. |
Prerequisites
URL(s) where the issue occurs.
https://ref6iausl8o2yxri.eu-central-1.linodeobjects.com/
(actually any *.linodeobjects.com domain, as it's a kind of whack-a-mole redirection operation).
I don't want to provide the complete URL (which is proof of the redirect chaining) for privacy reasons. It contains a base64-encoded key that potentially identifies the email address. Even the beginning of the URL (domain name) could be compromising my identity.
Description
I'm asking for an addition to uBO for all sites on linodeobjects.com.
For months (years) I get a spam a day on average that has a URL on linodeobjects.com that is the start of a redirect chain. The link sends people through 5+ redirects to finally a site that is usually a scam survey promoting a free product. In the end, one must put a credit card to "receive" the object. I'm not 100% sure it's a Phish site (reporting it to Google's safe site has never had any effect that I can tell).
I'm not sure what name there is for this scam, but I've reported it HUNDREDS of times to [email protected] via spamcop with NO RESULTS. Perhaps if uBO blocks this exploited domain, the people who try to access "legitimate" sites on linodeobjects.com will complain and the abuse will finally take action? I suspect the scammers want to keep the volume of complaints low to pass under the thresholds for AI-processed complaints.
Other extensions used
none
Screenshot(s)
Note: the screenshot is of the destination site <-- click at your own risk! (which is always different, as the linodeobjects.com page redirects sometimes 7 times). The spams always contain linodeobjects.com domain URIs as the start, however.
Screenshot(s)
Configuration
Details
The text was updated successfully, but these errors were encountered: