Phishing content on servers [LZG-998738]

[Incident#LZG-998738]

Hello team,

I am contacting you today as our team have located phishing content being freehosted by Jotform, which we would greatly appreciate being remved from your servers.

The content is actively targetting the customers of our client, Inland revenue NZ, hence we look forward to your cooperation on this matter.

If you need any extra information, please let us know

See below for incident info.

Thank you

---------------------------------------------

Screenshot of infringing content: https://www.phishportal.com/images/incidents/9/9/7b1f419c4b877824354fbb70debb89/997b1f419c4b877824354fbb70debb89.jpg

IP Address: 35.201.118.58

Phishing Content:

hxxps://form .jotform .com /henry1489/INLANDREVENUEDEPARTMENT

OR

https://form.jotform.com/henry1489/INLANDREVENUEDEPARTMENT

Brand Phished: Inland Revenue - New Zealand

Legitimate Brand URL's:

 - http://ird.govt.nz

 - https://ird.complywith.net

 - http://taxpolicy.ird.govt.nz/ 

Regards,

Security Operations

FraudWatch

Phone: +1 (415) 449 8800 | +613 9887 6777

Email: security@fraudwatch.com

Web: http://www.fraudwatch.com

Hello Liam,

Thanks for reporting this matter to us and helping us to keep Jotform safe. We understand how upsetting things like this can be, and we take your security and privacy very seriously. We want to assure you that Jotform is not participating in this conduct. We supply a Form Builder, and unfortunately, some parties may use the forms for wrongful purposes.

After looking into this, we determined that the form creator violated our terms of use. So, we immediately suspended the account, the account owner, as well as any forms and apps connected to it.

Please feel free to reach out again if you have any questions or if we can help you in any other way.