Fraudalant site using letsencrypt cert - appleid.icloud-lock.info

You may report certificate misuse to the email address mentioned at the bottom of https://letsencrypt.org/repository/.

I went ahead and reported the site to Google’s Safe Browsing; this is generally more effective than certificate revocation (which many browser don’t actively check). Let’s Encrypt uses data from Safe Browsing for newly-issued certificates as well (meaning if the domain is listed, it cannot obtain any new certificates).

6 Likes