Reporting Firebase Phishing - Who Do I Get In Touch With?
As fake OWA and CPanel apps continue to arise on Firebase, who at Google do we actually communicate with? It is one thing to report the problems in Chrome or to the Google Phishing page, but who at Firebase can actually get these pages removed?
Fake CPanel
https://firebasestorage.googleapis.com/v0/b/iouyfgjkgh.appspot.com/o/WEBMAIL.html?alt=media&token=f21ff97e-0c97-456a-9a4b-10962301f5d2#[email protected]
Fake email logon:
https://firebasestorage.googleapis.com/v0/b/general-6e6c1.appspot.com/o/gpa%2Findex2jak.html?alt=media&token=b0759c7f-a754-4832-9ced-ce8754fdb962#[email protected]
Just as common are fake Outlook/Microsoft Exchange pages and particularly, Office 365 login pages, but who do we go to at Google to get this taken down? Would they act more quickly of it was a fake GMail logon page?
Firebase is a technology designed to make programming and hosting easy, and it definitely does. It also gives credibility to hosting, as it lives in the Firebase domain, which is a Google domain after all. And the people who give it credibility are Google, as they make your browser, your video classroom, and your search engine, and so are probably the most trusted company on Earth today. So this is a problem. As your trust in Google aids Firebase hacker, so this must be in their interest (Google's) to discontinue.
Please Google, we need a page to report phishing and other scams directly to Firebase hosting, so that they can take direct action quickly, for all users of all browser