How to report abuse on storage.googleapis.com?

3,976 views
Skip to first unread message

Ting You

unread,
Jan 22, 2020, 5:52:26 PM1/22/20
to Google Cloud Filestore Discuss
Hello, 

For weeks I have been getting unsolicited emails containing links to the site https://storage.googleapis.com/wadrari/ which contains various Phishing pages. I have reported them using the Suspicious Site Reporter plug-in in Chrome, which results in them getting black-listed (.html pages within that space). Yet, this account space remains unscathed. 

How is one supposed to report abuse involving storage.googleapis.com?

Regards,

Lar Ting You

Olusayo Akinlaja

unread,
Jan 23, 2020, 6:59:44 PM1/23/20
to Google Cloud Filestore Discuss

Olusayo Akinlaja

unread,
Jan 23, 2020, 6:59:44 PM1/23/20
to Google Cloud Filestore Discuss
Similar issues seemed to have been reported in the past. One of those was reported on this community thread[1]. It is recommended to complete the form in this link[2] to report abuse of specific GCP Services. The appropriate GCP team would handle the report. 

Paz Stephen

unread,
Apr 16, 2020, 8:17:47 PM4/16/20
to Google Cloud Filestore Discuss
I have sent reports including full email headers to networ...@google.com and I have reported to Google Cloud Storage using their form.

storage.googleapis.com is hosting html files and images for the spammer. The html files are redirects to the real spamvertized sites.

It’s the same criminal outfit as described in this post: https://support.google.com/webmasters/thread/24437958?hl=en&msgid=24437958

What can we do to get this support for these scammers shut down?

storage.googleapis.com/emarket111/Unsub.html
storage.googleapis.com/emarket111/unsubscribe.html
storage.googleapis.com/amlfk/unsubscribe.html

storage.googleapis.com/emarket111/health.html
storage.googleapis.com/emarket111/health1.png
storage.googleapis.com/emarket111/health2.png

storage.googleapis.com/amlfk/okwatt.html
amlfk/okowatt.PNG
storage.googleapis.com/amlfk/okowattunsub.PNG

storage.googleapis.com/amlfk/getinstahard.html
storage.googleapis.com/amlfk/insta.PNG
storage.googleapis.com/amlfk/instaunsub.PNG

storage.googleapis.com/emarket111/instahard.html
storage.googleapis.com/emarket111/instahrdd.png
storage.googleapis.com/emarket111/insahardunsub.PNG

storage.googleapis.com/amlfk/refratequide.html

storage.googleapis.com/emarket111/maxloan.html
storage.googleapis.com/emarket111/rexmd1.png
storage.googleapis.com/emarket111/rexmd2.png

storage.googleapis.com/emarket111/rexmd.html

storage.googleapis.com/emarket111/montezuma.html
storage.googleapis.com/emarket111/montezuma1.png
storage.googleapis.com/emarket111/montezuma2.png

storage.googleapis.com/amlfk/fastcharging.html
storage.googleapis.com/amlfk/fastchargring.jpg
storage.googleapis.com/amlfk/fastunsub.PNG

storage.googleapis.com/amlfk/healnsooth.html
storage.googleapis.com/amlfk/healnsooth.PNG
storage.googleapis.com/amlfk/healunsub.PNG

storage.googleapis.com/tetssdfff/index%20CBD%20GUMMIES%20COMCAST.html

storage.googleapis.com/amlfk/ketoboost.html
storage.googleapis.com/amlfk/ketoboost.PNG
storage.googleapis.com/amlfk/ketoboostunsub.PNG

storage.googleapis.com/amlfk/bluesky.html

storage.googleapis.com/emarket111/engagedketo.html
storage.googleapis.com/emarket111/engagedketounsub.PNG

storage.googleapis.com/emarket111/HOMEWARANTYSERVICES.html
storage.googleapis.com/emarket111/homeservicesunsub.PNG

storage.googleapis.com/emarket111/cbdT.html
storage.googleapis.com/emarket111/cbdT2.png
storage.googleapis.com/emarket111/cbdT1.png

storage.googleapis.com/amlfk/refi.html
storage.googleapis.com/amlfk/REFIREFI.jpg
storage.googleapis.com/amlfk/refubsub2.png

storage.googleapis.com/amlfk/cbdgummies.html
storage.googleapis.com/amlfk/CBDGUMM.jpg
storage.googleapis.com/amlfk/CBDUNSUB.png

storage.googleapis.com/amlfk/smatfinancial.html
storage.googleapis.com/amlfk/Smartfinancial.jpg
storage.googleapis.com/amlfk/smartfinancialunsub.PNG

storage.googleapis.com/amlfk/ketozin.html
storage.googleapis.com/amlfk/ketozin.png
storage.googleapis.com/amlfk/ketozinunsub.PNG

storage.googleapis.com/emarket111/instahard.html
storage.googleapis.com/emarket111/instahrdd.png
storage.googleapis.com/emarket111/insahardunsub.PNG

storage.googleapis.com/emarket111/safe1.png
storage.googleapis.com/emarket111/safe.html
storage.googleapis.com/emarket111/safe2.png

Elias Barrado

unread,
Apr 17, 2020, 2:11:33 PM4/17/20
to Google Cloud Filestore Discuss
Hi Paz,

If you have reported it in this form [1], the appropriate team will investigate this and take the proper measures.

Ting You

unread,
Jun 23, 2021, 10:11:52 AM6/23/21
to Google Cloud Filestore Discuss
Is this still true? I am using that form a lot (it's a black hole for me, no followup, no confirmation the form was received) and the spamvertisements continue. 

Spammers are currently using the storage links as redirectors (not actually hosting stuff) so maybe they're exploiting a loophole in the abuse rules? Here is a big offender ("checkthisbuckets"):


If you link to  https://storage.googleapis.com/checkthisbuckets/dsdgrf%20vder%20rbvc.html (without the code) it will redirect to a harmless .org site.

Other popular offenders: 

FYI SpamCop.net automatically reports spamvertised links such as the above as abuse to "ab...@google.com" but I suspect that account gets too much mail for humans. 

George Suceveanu

unread,
Jun 23, 2021, 2:26:14 PM6/23/21
to Google Cloud Filestore Discuss
Hello, 

You are right, the same form constitutes still the proper way to report such issue. You should not lose confidence, but use it. 
Reply all
Reply to author
Forward
0 new messages