[XSS] Estafadores de Pokémon GO.

  • 2 Respuestas
  • 2763 Vistas

0 Usuarios y 1 Visitante están viendo este tema.

Desconectado Nobody

  • *
  • Underc0der
  • Mensajes: 197
  • Actividad:
    0%
  • Country: 00
  • Reputación 4
  • Security as art.
  • Twitter: @n0bodysec
    • Ver Perfil
    • Personal Website

[XSS] Estafadores de Pokémon GO.

  • en: Agosto 11, 2016, 10:32:38 pm
¡Hola!

Como era de esperarse, las estafas de suscripciones a SMS "premium" ya llegaron para Pokémon Go. En este caso, una página web que "promete" monedas y pokébolas para el famoso juego.

- Imagen:
Citar

- URL: You are not allowed to view links. Register or Login
- Vector utilizado: <script>alert(Nobody)</script>.
- Método: POST (X00InputUsername).
- Reportado: NO.

- WHOIS:
Citar
Domain Name: netoan.com
Registry Domain ID: 2027350117_DOMAIN_COM-VRSN
Registrar WHOIS Server: whois.wildwestdomains.com
Registrar URL: You are not allowed to view links. Register or Login
Update Date: 2016-05-11T01:32:56Z
Creation Date: 2016-05-11T01:32:56Z
Registrar Registration Expiration Date: 2017-05-11T01:32:56Z
Registrar: Wild West Domains, LLC
Registrar IANA ID: 440
Registrar Abuse Contact Email: [email protected]
Registrar Abuse Contact Phone: +1.4806242505
Reseller: DomainRightNow
Domain Status: clientTransferProhibited You are not allowed to view links. Register or Login
Domain Status: clientUpdateProhibited You are not allowed to view links. Register or Login
Domain Status: clientRenewProhibited You are not allowed to view links. Register or Login
Domain Status: clientDeleteProhibited You are not allowed to view links. Register or Login
Registry Registrant ID: Not Available From Registry
Registrant Name: Gerson Dominguez Matos
Registrant Organization:
Registrant Street: Mz Y, Lote 12, Urbanizacion Alamo
Registrant Street: Callao
Registrant City: Callao
Registrant State/Province: Callao
Registrant Postal Code: 01
Registrant Country: PE
Registrant Phone: +51.51942191706
Registrant Phone Ext:
Registrant Fax:
Registrant Fax Ext:
Registrant Email: [email protected]
Registry Admin ID: Not Available From Registry
Admin Name: Gerson Dominguez Matos
Admin Organization:
Admin Street: Mz Y, Lote 12, Urbanizacion Alamo
Admin Street: Callao
Admin City: Callao
Admin State/Province: Callao
Admin Postal Code: 01
Admin Country: PE
Admin Phone: +51.51942191706
Admin Phone Ext:
Admin Fax:
Admin Fax Ext:
Admin Email: [email protected]
Registry Tech ID: Not Available From Registry
Tech Name: Gerson Dominguez Matos
Tech Organization:
Tech Street: Mz Y, Lote 12, Urbanizacion Alamo
Tech Street: Callao
Tech City: Callao
Tech State/Province: Callao
Tech Postal Code: 01
Tech Country: PE
Tech Phone: +51.51942191706
Tech Phone Ext:
Tech Fax:
Tech Fax Ext:
Tech Email: [email protected]
Name Server: NS1.NETWORKDOMS.COM
Name Server: NS2.NETWORKDOMS.COM
DNSSEC: unsigned
URL of the ICANN WHOIS Data Problem Reporting System: You are not allowed to view links. Register or Login
>>> Last update of WHOIS database: 2016-08-12T01:00:00Z <<<

For more information on Whois status codes, please visit You are not allowed to view links. Register or Login

The data contained in this Registrar's Whois database,
while believed by the registrar to be reliable, is provided "as is"
with no guarantee or warranties regarding its accuracy. This information
is provided for the sole purpose of assisting you in obtaining
information about domain name registration records. Any use of
this data for any other purpose is expressly forbidden without
the prior written permission of this registrar.  By submitting an
inquiry, you agree to these terms of usage and limitations of warranty.
In particular, you agree not to use this data to allow, enable, or
otherwise make possible, dissemination or collection of this data, in
part or in its entirety, for any purpose, such as the transmission of
unsolicited advertising and solicitations of any kind, including spam.
You further agree not to use this data to enable high volume, automated
or robotic electronic processes designed to collect or compile this data
for any purpose, including mining this data for your own personal or
commercial purposes.

Please note: the owner of the domain name is specified in the "registrant" section.
In most cases, the Registrar is not the owner of domain names listed in this database.

¡Saludos!
« Última modificación: Agosto 11, 2016, 10:36:31 pm por Nobody »
You are not allowed to view links. Register or Login

Desconectado blackdrake

  • *
  • Co Admin
  • Mensajes: 1967
  • Actividad:
    33.33%
  • Country: es
  • Reputación 16
    • Ver Perfil

Re:[XSS] Estafadores de Pokémon GO.

  • en: Agosto 14, 2016, 07:24:52 am
Buen descubrimiento, es una pena que se siga estafando de esta manera...

Un saludo.


Desconectado Nobody

  • *
  • Underc0der
  • Mensajes: 197
  • Actividad:
    0%
  • Country: 00
  • Reputación 4
  • Security as art.
  • Twitter: @n0bodysec
    • Ver Perfil
    • Personal Website

Re:[XSS] Estafadores de Pokémon GO.

  • en: Agosto 14, 2016, 01:08:13 pm
You are not allowed to view links. Register or Login
Buen descubrimiento, es una pena que se siga estafando de esta manera...

Un saludo.

¡Gracias!
La verdad que si, una pena. Por suerte cada vez menos personas caen en este tipo de trampas.

Saludos.
You are not allowed to view links. Register or Login