MasterCard SecureCode and securesuite.net

Posted on June 22, 2011June 22, 2011 by lhl

Today was my first time encountering MasterCard^®SecureCode™ when making an online order. I honestly thought I was being phished. Here’s where I got redirected to.

Going to https://www.securesuite.net/ gives you a nice blank page. And here’s the whois information:

Registrant:
      cyota
      yaron shohat
      174 Middlesex Turnpike
      Bedford, MA 01730
      US
      Phone: +1.8665606153
      Email: 

   Registrar Name....: Register.com
   Registrar Whois...: whois.register.com
   Registrar Homepage: www.register.com

   Domain Name: securesuite.net
      Created on..............: 2002-08-23
      Expires on..............: 2012-08-23

   Administrative Contact:
      RSA
      Network Operations
      174 Middlesex Turnpike
      Bedford, MA 01730
      US
      Phone: +1.8665606153
      Email: 

   Technical  Contact:
      RSA
      Network Operations
      174 Middlesex Turnpike
      Bedford, MA 01730
      US
      Phone: +1.8665606153
      Email: 

   DNS Servers:
      pdns3.ultradns.org
      pdns4.ultradns.org
      pdns2.ultradns.net
      pdns1.ultradns.net
      pdns5.ultradns.info
      pdns6.ultradns.co.uk

Who’s cyota? Who’s yaron shohat? And what fucking moron at RSA thought this was a good idea? Here’s the Google results for securesuite.net phishing. Doing a search for Securesuite.net does not return Visa or Mastercard’s official sites…

Well, it turns out securesuite.net isn’t a phishing scam, after doing some Internet searching, digging up direct links from Mastercard.com, and calling MasterCard directly to get verbal confirmation and to give them a piece of my mind. It’s not a scam, it’s just moronic and a phishing scam waiting to happen.