Slugsmashers site appears to be phishing .

dangavel · Oct 31, 2021

Went to check our something on slugsmashers site ( steamachine.com ) last night and my antivirus detected numerous threats among them phishing, best avoid it at the moment .

clam1952 · Oct 31, 2021

Try steammachine.com it's a double m. https://www.steammachine.com/ which is OK here.

dangavel · Oct 31, 2021

I just spelled the url wrong, its the same site and my antivirus doesnt like it one bit. . sometimes some software is over cautious. this is avast premium.

pware · Oct 31, 2021

dangavel said:
I just spelled the url wrong, its the same site and my antivirus doesnt like it one bit. . sometimes some software is over cautious. this is avast premium.

There are some phishing and scam/malware sites that "cyber-squat" on URLs that are very similar (one or two characters missing or different) to legitimate web sites. I tried both URLs, with and without the extra "m", and my browser simply reported that it was unable to connect to the incorrectly addressed site. Safer to have an AV program that over-reacts than one that doesn't react at all, as annoying as that can sometime be.

slenderman8888 · Nov 1, 2021

pware said:
There are some phishing and scam/malware sites that "cyber-squat" on URLs that are very similar (one or two characters missing or different) to legitimate web sites. I tried both URLs, with and without the extra "m", and my browser simply reported that it was unable to connect to the incorrectly addressed site. Safer to have an AV program that over-reacts than one that doesn't react at all, as annoying as that can sometime be.

That’s close. The practice you are referring to is actually called “typosquatting” Since the bad actors purposefully use a typo of the legitimate domain to get traffic from those who end up making the typo in the URL.

clam1952 · Nov 1, 2021

My browser said the Domain was for sale for the incorrectly addressed site, nothing like consistency!

The actual site was fine according to Malwarebytes Browser guard.

wreeder · Nov 1, 2021

By definition, a phishing site is a site pretending to be another site in order to fool the user into logging in with a user name and password which is then recorded and used to forward the user to the real site. In this case, the real site doesn't require a login so it can't be a phishing site.

JAGG · Nov 1, 2021

My AV also doesn't let me in. Sandbox is the right solution then to rip anything out.

JCitron · Nov 1, 2021

I was able to connect using the correct address. Everything appears fine. Typo-squatting is annoying and it got many coworkers in trouble with the IT security folks after "things" got flagged.

dangavel · Nov 1, 2021

This is all rather amusing , it's all the fault of my over active anti virus software, as far as I know there's no steamachine.com, masquerading as the actual site, I just made a typo. ......

i must admit it's hard to envisage why slugsmashers site would be a phishing sight as he doesn't ask for any info from users as far as I can remember.....

RW912 · Nov 2, 2021

pware said:
. Safer to have an AV program that over-reacts than one that doesn't react at all, as annoying as that can sometime be.

I cannot agree more to this.

Slugsmashers site appears to be phishing .

dangavel

Well-known member

clam1952

Welsh Narrow Gauge nut.

dangavel

Well-known member

pware

Trainz Veteran

slenderman8888

Active member

clam1952

Welsh Narrow Gauge nut.

wreeder

RGS Railfan

JAGG

Well-known member

JCitron

Trainzing since 12-2003

dangavel

Well-known member

RW912

Trans Europ Express

Similar threads