I got this email from a security company representing a bank.
Should I send them the log files that they requested ?
Should I ask my webhost for help ? Or should I just start over and secure my site myself ?
I am backuping up all my access logs and and FTP log files right now.
Email from security company
Our company investigates computer crime incidents on behalf of banks and other companies. |
A phishing site was found to be operating on your network and targeting Bank XXXXX customers:
If possible, please provide the following information to assist our investigation:
- Web server and FTP server log files for the past several days
- Copies of all phishing files, hack tools, or other hacker files
Finally, we kindly request that you disable or remove the phishing files as soon as possible.
If we have contacted you in error, or there is a better way for us to report this incident, please let us know.
Thank you for your assistance,