Phishing Alert: Issue 3936839 Server involved in fraud at 23.237.100.152

Report Phishing Email to ITSC
Guide to Handle Phishing Email

Here is how the phishing email looks.


Sender: Netcraft Takedown Service <takedown-response+435735490@netcraft.com>
Sent: Thu 30-06-22 12:56
Subject: Issue 3936839 Server involved in fraud at 23.237.100.152

Hello,

We have discovered an email server on your network that is sending fraudulent
e-mail messages.

The server has the IP address at 23.237.100.152

This attack targets our customer, WPP, website URL  https://www.microsoft.com

We have attached an example fraudulent e-mail demonstrating the e-mail server’s
involvement. Please close down this attack as soon as possible.

More information about the detected issue is provided at
https://incident.netcraft.com/JDGDY73THY/

Many thanks,

Netcraft

Phone:  +44(0)1225 447500
Fax:  +44(0)1225 448600
Netcraft  Issue Number: 3936839

To contact us about updates regarding this attack, please respond to this email.
Please note: replies to this address will be logged, but aren’t always read. If
you believe you have received this email in error, or you require further
support, please contact:  takedown@netcraft.com.

This message follows the Abuse Reporting Format (ARF) so can be processed
automatically. See  http://www.mipassoc.org/arf/  for more information.
Attachments:
report.txt         (188 bytes)
email-1.txt         (15.7 KB)