cancel
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
YetAnotherAcc
Respected Contributor
Respected Contributor

Warning: Multiple Optus Payments Phishing sites

This is just a friendly reminder for everyone to be very careful about any emails or SMS's that contain links, and to not click on any links unless you are 100% positive that the source email/SMS is legit AND that the links are going to a legitimate domain.

 

To emphasise that point, here is a list of 9 domains that are active at this very moment and are pretending to be the legitimate Optus payment site, and trying to extract your mobile phone number and credit card details.

sgcb-mobile.com
messageurl.com
optus.company
optus.support
optus.services
optus-paymybill.net
optus.cash
verifybank.net
verifybank.online

And even when Optus become aware of these Optus specific Phising sites, you can't rely on them blocking or taking down these sites. For example, Optus has know about the first two domains on this list since at least the beginning of September and has not blocked or taken down those sites.

And when they block a site they do so by redirecting the domains, so that will only protect people that are using Optus' DNS servers.

 

Be careful out there!

 

2 Replies
Ray_YC
Online Community Manager
Online Community Manager

Re: Warning: Multiple Optus Payments Phishing sites

Thanks, YetAnotherACC. Very sound advice.

We shared your post with our Optus team, their response:

The Optus branded phishing websites in that list we have actioned and blocked on the Optus network. There may be delays between when a customer reports it and when we action it, but it’s never ignored.

The customer is correct that we only block Optus Branded phishing websites and only via the Optus DNS (default website lookup for all Optus fixed and mobile customers).

If a customer is using their own VPN or their own DNS server to connect to websites – it’s not possible for Optus to protect them.  

Note: Customers who change from the default to their own VPN or their own DNS server should already be aware they do so at their own risk.

------------------------------------------------------------------------------------------------------------------ I’m part of the Yes Crowd team, employed by Optus to help run our online community. This guide explains how everything works on here and you should also check out our Community Guidelines.

Did we answer your question? Please mark it as a Accepted Solution and be generous with that Kudos button Smiley Happy
0 Kudos
Reply
YetAnotherAcc
Respected Contributor
Respected Contributor

Re: Warning: Multiple Optus Payments Phishing sites


@Ray_YC wrote:

The customer is correct that we only block Optus Branded phishing websites and only via the Optus DNS


I assume you mean Optus branding in the domain name, as all of the domains I listed point to Optus branded websites.

Why on earth would you only ban those? That really makes no sense at all.

So if you only block Optus branded domains, then why are you blocking these ones (which are all apparently Optus specific phishing sites)?

mahrosebeautyparlour.com
www.2biz.co.il
mailpointer.dkgrup-com.tk
hostingpaneldmc.com


If a customer is using their own VPN or their own DNS server to connect to websites – it’s not possible for Optus to protect them.  


Sure, not via Optus DNS, but where a site appears to be solely/largely just a phishing site (and not just a compromised 3rd part site), as all the above sites are, then you can report them to the domain registrar. They can (and do) put domains in ClientHold status which makes those domains unreachable globally, thereby significantly increasing the number of Optus customers that get protection.

0 Kudos
Reply