Bendigo Bank Phishing

Link → https://au.service-victoria.com/ben/secure/

https://au.service-victoria.com/ben/secure/32j23lklkd32lkdf23.txt - Saved Passwords etc.
https://au.service-victoria.com/ben/secure/netf.txt also

https://au.service-victoria.com/ben.zip - Source Code

/ben.zip is showing a 404

LitePhish (service-victoria.com) - Controls the script

Damn lmao

Other URLs:
https://au.service-victoria.com/__MACOSX/
https://au.service-victoria.com/walletconnect/
https://au.service-victoria.com/
https://au.service-victoria.com/xch5/
https://au.service-victoria.com/ff9/

So many phishing campaigns Index of /LitePhish/websites (service-victoria.com)

Wow - that’s not good.

We should report this.

https://au.service-victoria.com/LitePhish/victims/

This is how the logged info is sent:

Could spam it ig

oooh should be fun

Here: LitePhish/modules/iplogger.php at 8d8775ea604ab438f760dca0170ad56f4c2a9baf · DarkSecsDevelopers/LitePhish · GitHub

Way ahead of you - already reported

Ah, that’s good.

Spamming their “sender” thing rn

image409×148 5.15 KB

I wonder if they allow the DELETE method on their servers

For LitePhish, I don’t think so (it’s open source and I don’t see any mention of it in the code). However, you could try it for their Bendigo Bank crap.