geewiz phishing scam

No issue with the Geewiz website that I can see, but what are you clicking to go to the Geewiz domain?
 
I also had concerns about their website and payment gateway a few years ago
 
No shyte, Sherlock..

This is obviously a URL loading as part of the many requests made when browsing to geewiz.co.za.. Not something OP is explicitly clicking on..
whatever. I looked at my router log and that dns didnt show. now looked at page sources and indeed it loads some script from that site. won't try to help again.
 
That js looks extremely sus. Bunch of obfuscated functions that looks to be masquerading as jquery.
 
It's a real domain for the Pescara province
In Italy, so really odd that there is a call to it in Geewiz
 
It's a real domain for the Pescara province
In Italy, so really odd that there is a call to it in Geewiz
That website is likely compromised and used as a zombie to serve that jQuery script file which itself is also probably messed with to steal information from the victim
 
From their last web archive, it is not present. Their host or site has a vulnerability, or someone maliciously added it.
 
That website is likely compromised and used as a zombie to serve that jQuery script file
"Web 2.0" all the way down. Loose collection of external tools, utilities and code over which the "dev" has no insight, control or concept of supply chain attacks.

See this with many corporate sites of late. Given how many of these extended services we block some sites are hilariously broken. (WIX, hubspot, etc, etc)

All filthy. All been used to attack us at various times. Terrible behaviour but how many corps out there actually do code review?

Bounced many dev houses looking for work by just checking their public presence site.
 
Top
Sign up to the MyBroadband newsletter
X