I reported it with PhishReport (that website I mentioned the other day), and here’s what that looks like for anyone curious:

First you open a case on PR:

Image

Then you submit it to google safe browsing

Image

Then to Microsoft’s Threat Intelligence page:

Image

Then to the domain registrar (who provide the domain (site) name). In this case it’s NameSilo and they’re kind of shit when it comes to this sort of thing, but they do do their job so I can’t complain I guess:

Image

Then normally you’d submit a report to their domain host (who actually host the phishing page), but they use a Chinese host, Tencent, who really don’t want to do anything so they make it difficult and phish report doesn’t have a link to their phishing report page, just their copyright takedown page, so you’d probably need to email them. I decided to not bother for now

It seems that a lot of scams now are based out of China. Most of the phishing links I get, at least the ones targetting Australians, are coming from china. And Chinese companies really really really do not want to do anything about such phishing and scam websites. Tencent always cause me problems when I try to report them. They also demand all your personal information, so I submit my reports to them with false information, because I don’t really want them passing along my address and personal information to criminals. But that’s unfortunately just how it is now