Just a heads up that while browsing the internet today I got redirected to a FAKE Shaw survey + reward offer (see picture attached). It had the Shaw logo and a countdown timer to encourage a fast decision to start answering questions.
I was redirected to the domain "mobilevd.com" to take the survey but that may not be consistent. It looked somewhat realistic since it had the Shaw look & feel. It probably uses the logo/style of whatever ISP that it detects you are coming from (not just Shaw).
I didn't fall for it but I'm concerned others could. Not sure what the end result would be if you answered the "survey" but I'm sure it's not a reward and nothing good can come from it.
Solved! Go to Solution.
I checked with support at shaw and this had nothing to do with them but looks very real. I hope the security team shuts this down as soon as possible!!
I saw this today too, as well as in the past. I was redirected from TutorialsPoint, but I've seen it come up when using Outlook.com as well. I believe the attacker snuck a redirect into an advertisement through AdSense, AdChoice, or Valueimpression.
Even if I didn't think it were a scam, it is so aggressive I would have closed it out of anger.
Here's all of the info I could gather...
From browser history:
(edited my IP address out where ip=0.0.0.0)
Remote Address: 220.127.116.11:443
Registry Domain ID: 2410181333_DOMAIN_COM-VRSN
Domain Status: clientTransferProhibited
Registry Expiration: 2020-07-07 05:28:12 UTC
Created: 2019-07-07 05:28:12 UTC
Name: NameCheap, Inc.
IANA ID: 1068
Abuse Contact Email: email@example.com
Abuse Contact Phone: tel:+1.6613102107
Delegation Signed: Unsigned
Registry Server URL: https://rdap.verisign.com/com/v1/domain/ca-win.com
Last updated from Registry RDAP DB: 2019-08-20 11:50:23 UTC
IP Address Details for 18.104.22.168
ASN AS14061 DigitalOcean, LLC
Partial list of domains hosted by DigitalOcean:
Saw this yesterday (Aug 28/19). Now redirects to "songluxury.com" and tries to sign you up for a 4 day trial, and a $60+ contract to their service.
Good information, I wish there is some sort cyber crime prevention agencies do some sort of police work to shut off these scum.
Yes indeed. They used the Shaw cable logo. I almost went for it. Just didn't feel right. I hope they get tuned up for this..