Expertise level: Easy
What is phishing?
Fraudsters send fake emails or set up fake websites to trick you into disclosing your user name and password. This practice is usually referred as "phishing".
Typically, fraudsters try to trick you into providing your user name and password so that they can gain access to an online account. Once they gain access, they can use your personal information to commit identity theft, charge your credit cards, empty your bank accounts, read your email, etc.
How can I prevent it?
Phishing mainly occurs exploiting the vulnerability of software installed on your domain.
Here is how you can prevent it:
- Always keep the softwares installed on your domain up to date.
- Upgrade the software whenever a new version is released.
- Remove any outdated scripts or application installed on the domain.
- Directories with 777 permission are world writable and easily exploitable. The permission of the files should be 644 and the directories should have 755 permission.
- If you have any folder owned by the user "nobody" or "apache", please correct the ownership of it.
How can I remove the blacklist once the site is affected?
Once your site is blacklisted by anti-phishing organizations, only those organizations can remove your site from their blacklists.
Remove all phishing-related files and scripts immediately from your website. Once removed, you will have to wait until the blacklist time runs out. They will normally remove the blacklist once the phishing activity on your site has been stopped.