Live Global Events: Secure, Simplify, and Transform Your Business.

Zscaler Blog

Get the latest Zscaler blog updates in your inbox

Subscribe
Security Research

Free Provider X90x.net Hosting Numerous Facebook Phishing Sites

image
CHRIS MANNON
March 13, 2012 - 2 min read
In the long history of free hosting and DNS providers abused (co.cc, pastehtml.com, etc.), x90x.net can now be added to the list, as it is being used to host many Facebook Phishing sites in a variety of languages:
  • faceb000k.x90x.net
  • jebemtakra-pisdfa-asdasdsds-ddfs.x90x.net
  • mesnaindustrija-goranovic-m-e-s-n-a.x90x.net
  • dft3.x90x.net/fbcd.html
  • d3xt0pcr3w.x90x.net
  • etc.
Image
www.mesnaindustrija-goranovic-m-e-s-n-a.x90x.net
Image
d3xt0pcr3w.x90x.net
Image
dft3.x90x.net/fbcd.html
Image
x90x provides free hosting on their sub-domain
A little bit more research showed that many other types of scams and spam content are hosted on x90x.net sub-domains. Here are a few of them:
 
  • Fake Google page
Image
mygoogle.x90x.net
 This site does not appear to be functional.
  • Links to Canadian Pharmacies
Image
vmdygoa.x90x.net
  •  forex.com phishing site
Image
jasf.x90x.net/tag/chase/
  • Porn (no screenshot!)
  • and much more....
The hosting provider is also used by legitimate sites.  It is very risky to host any important website with a free provider which is going to get abused over and over. co.cc has been blocked by Google Safe Browsing in the past, meaning all Firefox/Safari/Chrome users were prevented from visiting any of the websites hosted under co.cc. I believe that a $10/year domain name is really a must for any website. Do not rely on a free domain such as those provided by x90x.net that could soon be on Google's and others' denylists.
form submtited
Thank you for reading

Was this post useful?

Explore more Zscaler blogs

A cyber criminal shopping for malware
Agniane Stealer: Dark Web’s Crypto Threat
Read Post
Business people walking through a city
The Impact of the SEC’s New Cybersecurity Policies
Read Post
Digital cloud illuminated in blue
Security Advisory: Remote Code Execution Vulnerability (CVE-2023-3519)
Read Post
TOITOIN Trojan
The TOITOIN Trojan: Analyzing a New Multi-Stage Attack Targeting LATAM Region
Read Post
01 / 02
dots pattern

Get the latest Zscaler blog updates in your inbox

By submitting the form, you are agreeing to our privacy policy.