X
Tap here to go to the mobile version of the site.
Your Firefox is out of date and may contain a security risk! Upgrade Firefox

Support Forum

reported web forgery. Has info gone anywhere prior to this screen popping up?

Posted

I received an email from AppleID@customers.appstore.36.ca asking me to update my account info. As my cc expiry date had just changed so I thought oh damn I forgot. I put in my updated info, then when I hit submit, at least I think that was what was on the bottom, don't honestly remember, any way a screen for "Reported Web Forgery" popped up. I got out of there I did not go any farther but did my information go anywhere? Looking closer at the email, there it DHgate.com web address at the bottom. Please put my mind at ease! Thank you. I just need to know if my info went any where.

Chosen solution

Hi SMB13,

Forgery sites can be pretty crafty. Since it was redirected to a web forgery page, most likely it is unsure to know if it was submitted to the site hosting the phishing email. However to be absolutely certain that the forgery site is not hosting the notice please contact Apple Support that handles Apple IDs if the recently changed password was compromised.

Previously, we have a place to report the link, however not anymore so: (Ref: Tyler)

  • If you run malwarebytes, does it remove anything, and does this website still appear after running malwarebytes?
  • How does built-in Phishing and Malware Protection work?
  • Another way to be sure is to check the security preferences in the browser to see if the check box for blocking reported sites is checked. This would be on by default.


Hope to hear back from you.

Read this answer in context 0
Post a Reply

Additional System Details

Installed Plug-ins

  • Shockwave Flash 11.9 r900
  • SiteAdvisor
  • Google Update
  • McAfee MSC FF plugin DLL
  • 5.1.20913.0
  • McAfee MSS+ NPAPI Plugin
  • Adobe PDF Plug-In For Firefox and Netscape 10.1.8
  • GEPlugin
  • Picasa plugin
  • McAfee Virtual Technician plugin
  • NVIDIA 3D Vision plugin for Mozilla browsers
  • NVIDIA 3D Vision Streaming plugin for Mozilla browsers
  • NPRuntime Script Plug-in Library for Java(TM) Deploy
  • Adobe Shockwave for Director Netscape plug-in, version 11.5.9.620
  • NPWLPG
  • The plug-in allows you to open and edit files using Microsoft Office applications
  • Virtual Earth 3D 4.00100226006 plugin for Mozilla
  • Office Authorization plug-in for NPAPI browsers

Application

  • User Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:25.0) Gecko/20100101 Firefox/25.0

More Information

guigs2
  • Top 10 Contributor
  • Administrator
  • Moderator
122 solutions 1456 answers

Hi SMB13,

One way to check this is to look at the internet traffic from that time. I do not think that you can see it unless logging was turned on at the time you submitted the change. Another way to check is to see if there is anything in your sent box to the user.

Best bet would be to change the password, just in case something was sent.

Hope this helps.

Was this helpful to you?
Reply

Question owner

Hi there, Do not know how to check internet traffic. There is nothing sent form my send box, however it was done via a link in the email. Once I entered the info and hit submit, the warning came up stating "Reported Web Forgery" with the option to get out or carry on. I did not go beyond that warning window. My AppleID password was changed but I am not sure that has anything to do with it, but then what do I know? I usually just delete anything that I think is suspicious, I guess I just had a BAD moment! Not really sure. I found the pages in my web history, checking them they all go to "Reported Web Forgery" page.

Was this helpful to you?
Reply
guigs2
  • Top 10 Contributor
  • Administrator
  • Moderator
122 solutions 1456 answers

Chosen Solution

Hi SMB13,

Forgery sites can be pretty crafty. Since it was redirected to a web forgery page, most likely it is unsure to know if it was submitted to the site hosting the phishing email. However to be absolutely certain that the forgery site is not hosting the notice please contact Apple Support that handles Apple IDs if the recently changed password was compromised.

Previously, we have a place to report the link, however not anymore so: (Ref: Tyler)

  • If you run malwarebytes, does it remove anything, and does this website still appear after running malwarebytes?
  • How does built-in Phishing and Malware Protection work?
  • Another way to be sure is to check the security preferences in the browser to see if the check box for blocking reported sites is checked. This would be on by default.


Hope to hear back from you.

Was this helpful to you?
Reply
guigs2
  • Top 10 Contributor
  • Administrator
  • Moderator
122 solutions 1456 answers

I also found this for tools for any future suspicious password prompt.[https://developer.mozilla.org/en-US/d.../InsecurePasswords]

Modified by guigs2

Was this helpful to you?
Reply
FredMcD
  • Top 25 Contributor
114 solutions 1458 answers

Helpful Reply

rmcguigan; I tried that web page, and got a not found error.

SMB13, and everyone else. Sometimes you will get a message claiming it is from WhatEverName Corp Co Whatever. While it is possible it did come from that company, it is also more probable it is an attempt by hackers to get your information.

ANYTIME YOU GET A MESSAGE LIKE THIS, DO NOT USE ANY OF THE LINKS,

instead, log into that web site and check it from there. NEVER just give out ANYTHING!!! BTW, some hackers know how to make messages so that the return address looks legitimate.

Was this helpful to you? 1
Reply
guigs2
  • Top 10 Contributor
  • Administrator
  • Moderator
122 solutions 1456 answers

fredmecd-hotmail: Thank you, I put the url instead, great warning.

Was this helpful to you?
Reply

Question owner

To both you, thank you for the info. Sad part is is that as per fredmecd-hotmail said "NEVER just give out ANYTHING!!!" I don't usually. I guess it was just a bad day. I contacted Apple immediately and sent them the info in the email and changed everything else. Sad world we live in today! Once again thanks for your information.

Was this helpful to you?
Reply
cor-el
  • Top 10 Contributor
  • Moderator
10738 solutions 96600 answers

There should be an 's' appended to the MDN link:

Was this helpful to you?
Reply

Question owner

Hey Cor-el, I have booked mark this page and will reread it all when a have a few more minutes. Thing that p----- me of the most is I know all this, but that really does not matter now does it? I have changed everything so we move forward and next time I won't be so quick to deal with emails!

Thanks.

Was this helpful to you?
Reply
Ask a question

You must log in to your account to reply to posts. Please start a new question, if you do not have an account yet.