Report a website for abuse to revoke their certificate

Help
1

https://www.oyeet.com/ is a fraudulent and scam website which is using letsencrypt.org to get a legitimate SSL certificate. You can read the reviews from victims on Facebook: OYeet | Facebook

How could we report and revoke their SSL certificate?

Thank you

2

You can report the site at numerous services like Google Safe Browsing.

You can't. Please see The CA's Role in Fighting Phishing and Malware - Let's Encrypt for more information about the stance Let's Encrypt has taken.

Also see the VERY numerous amount of threads about this topic on this Community.

8 Likes
3

Hi @nuxclass,

$ nslookup www.oyeet.com ns1.myhostadmin.net.                                                             Server:         ns1.myhostadmin.net.
Address:        118.123.249.114#53

www.oyeet.com   canonical name = shops.myshopify.com.

$ nslookup  shops.myshopify.com dns1.p06.nsone.net.
Server:         dns1.p06.nsone.net.
Address:        198.51.44.6#53

Name:   shops.myshopify.com
Address: 23.227.38.74

https://www.abuseipdb.com/check/23.227.38.74

And here a a few links to Shopify links to assist with bad actors

  1. https://help.shopify.com/en/manual/privacy-and-security/account-security/phishing
  2. Report a Partner Violation
  3. Report an Issue with a Merchant

And previously in the community Is there a way to report bad actors?

2 Likes
4

Thank you, I will try this way. It's just so surprising to there is no policy to prevent them to renew their certificate with letsencrypt.

1 Like
5

Let's Encrypt is a nonprofit Certificate Authority providing TLS certificates to 300 million websites. A Certificate Authority really has no way effect way to validate where a website is a scam or not; Let’s Encrypt offers Domain Validation (DV) certificates and can validate the Domain Name but not its contents.

2 Likes
6

Understood, but a non-profit organization helping criminal organizations renew their certificate at expiration does not make sense to me.

Let me explain in another way: it's like letsencrypt being a free taxi waiting for a thief to run away after attacking an old lady in front of everybody in the street and the driver being aware about it but not his problem.

7

https://sitereport.netcraft.com/ is also a location for tracking and reporting phishing.

2 Likes
8

Thanks, I will also send an email to abuse@shopify.com..

3 Likes
9

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.