Email host security is now up and running!

For Immediate Release:
Jared Rimer
Woodland Hills, California
818-921-4976 )phone)
804-442-6975 (text/whats app)
www.jaredrimer.net (website)

November 6, 2020 was a very interesting day. I woke up to an email that seemed quite interesting, but yet suspicious at the same time. The email claimed that I was going to lose my email address unless I confirmed its details. The problem was, and still is, that I control the domain and there is a control panel that allows me to create and remove email addresses at will.

As explained in the blog post on emailhostsecurity.com when you go to it, this email didn’t seem to have a valid name. and just looked spammy.

The email said there was unusual log in activity and if you look closely, it appears that things are on the up and up, correct? If you didn’t know better, the answer was yes.

Look at the link in the blog post. It was http://emailhostsecurity.com/?page_id=26 which is unlinked and will continue to stay unlinked. This particular page asked for an email address and a password.

Wanting to mess with them to see where it went, I gave them my very old, non-existent codeamber.org email address and a made up password. The site said “thank you!”

I then went to the original page for this domain, emailhostsecurity.com and I clearly remember that it had images, and a copyright. This copyright said it was Cpanel. This seemed very strange to me, as cpanel has their own website. They provide a control panel which is used around the globe which allows you to control email, ftp, installation of scripts, stats and more. Of course, this isn’t the only control panel out there, but one that a lot of people are familiar with.

As I wrote on the blog post, the creation date was November 4, 2020 and expired three years later. I made a phone call, and I also sent my good buddy who I like, Brian Krebs, the blog post.

Some months later, I saw the HTML page I described above down and replaced by a blank page with nothing on it and no coding at all. Just a blank file that someone put up.

Some time after that, I saw that the account was suspended. Cpanel offers the ability through its web hosting control panel to suspend an account. Chances are, they left the id page up and continued to send out email through forms or otherwise to get people to submit email credentials.

Unfortunately for them, the domain was taken away from them, and I toyed with the idea of buying it. Icann, the U.S. authority on the .com domains must have gotten involved after repeated reports to whoever hosted the domain didn’t do anything, or tried but couldn’t solve the issue as the people probably claimed they weren’t doing anything wrong.

After buying the domain after consoling, I developed and will maintain a comprehensive site of TSB, resources including terms, books of interest, articles dealing with phishing and the landscape, and companies that can help with antivirus and learning about the landscape.

They include companies like Trend Micro, Phishlabs, F-secure, Virus Total and more. Books will be from authors like mikko Hyponnen, Scott Schober and others. When there are others to add, we’ll add them. Blog posts from Phishlabs, my own blog, Kim Komando, Cyber Scoop, Krebs On Security, and others wil be posted when they talk about phishing, email and the landscape where a serious attack or something of interest that people should know will help people learn. The blogs will talk about how the attack started, and mitigations to help you spot what’s up and prevent yourself from getting bit too.

Today is November 2, 2022: two days before the initial two-year anniversary of the domain’s first existence. Today, we have officially launched a comprehensive page as described above to show people that domains can be used for good, once they were bad.

As I’ve stated on TSB many times, I may not have all the answers, but if we all work together, we can find one. With the blessing of Scott Schober I got during the beta process, he started correcting my errors and gave me a thumbs up.

Even colleagues I work with at Freshbooks gave me a thumbs up. During the beta cycle, Nick in Santa Barbara, Preston from Throwback and others encouraged me to make this web site and how it would benefit the community as a whole.

Today, November 2, 2022: I present to you: Email Host Security. Its now fully launched with a complete directory of TSB, info on email as it once was and how it is now, and the above resources.

There will be no contact through email host security, and that was my choice. I have plenty of email addresses that I don’t feel I need one there, and like on Michelle Dyer’s memorial page, I have it up for learning and referencing things. Michelle’s page is a memorial page and family and friends can go and download and listen to past audio.

This site is similar. I don’t need to be spammed there at EMHS, I don’t need to be targeted in phishing and the like there, and the domain will stay clean.

I wil continue to renew the domain so it survives, and will keep it as clean as possible. I hope that you all enjoy the site, and now … it’s official!

Go over to email host security and learn.

If you’ve come from the beta, the redirector will last 30 days and will be removed. The beta is now a fully launched project on its own web site where it belongs.

If you have any questions, please contact me by the information above.  I look forward to serving you!

Sincerely,
Jared Rimer
web site