erroneous fraud warning - can you help?
John Wilcock
john at wilcock.fr
Wed Oct 28 13:54:01 UTC 2020
Andy,
That redirect, within the bookshop.org domain, is fine (and, presumably,
occurs on the web server, not in the link you send out).
The problem is that the email you quote has a link that appears to point
at bookshop.org but actually points at linkprotect.cudasvc.com. You need
to ascertain at what point in the mail chain the link is changed to go
via that link protection service, and also which MailScanner server has
flagged it as fraudulent.
John
On 2020-10-28 13:59, Andy Hunter wrote:
> Thank you Martin for your response.
> US visitors go to https://bookshop.org, but UK visitors are redirected
> to https://uk.bookshop.org - is there any way to do that without being
> flagged in mailscanner as fraud?
>
> Andy
>
> On Wed, Oct 28, 2020 at 8:25 AM Martin Hepworth <maxsec at gmail.com>
> wrote:
>
> It's because the link shows as one thing but sends you off elsewhere,
> hence looks dodgy
>
> Why the odd redirect?
>
> On Wed, 28 Oct 2020 at 11:30, Shawn Iverson via MailScanner
> <mailscanner at lists.mailscanner.info> wrote:
>
> If you are using a link protection service, you will want to turn off
> this option in MailScanner:
>
> Highlight Phishing Fraud = No
>
> On 10/27/20 10:01 AM, Andy Hunter wrote:
> Hello, I am sorry if this is not the proper use of this list, but I
> need help.
>
> My company is legitimate, but is somehow being flagged by mailscanner.
> Links to Bookshop.org get this warning: MailScanner has detected
> definite fraud in the website at "linkprotect.cudasvc.com". Do _not_
> trust this website: MailScanner has detected definite fraud in the
> website at "linkprotect.cudasvc.com". Do _not_ trust this website:
> MailScanner has detected definite fraud in the website at
> "linkprotect.cudasvc.com". Do _not_ trust this website: Bookshop.org
> [1]
>
> Our payments are handled by Stripe, Stripe has been audited by a
> PCI-certified auditor and is certified to PCI Service Provider Level 1.
> This is the most stringent level of certification available in the
> payments industry.
>
> We are an alternative online bookstore that supports local businesses
> that are competing with Amazon. All transactions are secure and free of
> fraud. How do we remedy this error message?
> --
>
> Andy Hunter
> Founder & CEO, Bookshop.org [2]
>
> --
>
> Shawn Iverson
> shawniverson at summitgrid.com
>
> --
> MailScanner mailing list
> mailscanner at lists.mailscanner.info
> http://lists.mailscanner.info/mailman/listinfo/mailscanner
--
--
Martin Hepworth, CISSP
Oxford, UK
--
MailScanner mailing list
mailscanner at lists.mailscanner.info
http://lists.mailscanner.info/mailman/listinfo/mailscanner
--
Andy Hunter
Founder & CEO, Bookshop.org [2]
Links:
------
[1]
https://linkprotect.cudasvc.com/url?a=https%3a%2f%2fBookshop.org&c=E,1,o56gMoT4pM9xf-POSW8SNpzj_1rLsZYITksfLNvu2fy0g02J2TH0SdO9erKsIMYtwDQq-zJTsq7GoXRBYG3hcgbx48ieuNKPFtn0v4I8ah7tW3NHA8gD0w,,&typo=1
[2] https://Bookshop.org
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.mailscanner.info/pipermail/mailscanner/attachments/20201028/215c0d10/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: blocked.gif
Type: image/gif
Size: 118 bytes
Desc: not available
URL: <http://lists.mailscanner.info/pipermail/mailscanner/attachments/20201028/215c0d10/attachment.gif>
More information about the MailScanner
mailing list