nanog mailing list archives

Previous By Date Next
Previous By Thread Next

Re: ARIN whois contact abuse from ipv4depot aka Silicon Desert International Inc

From: Mike Hammett <nanog () ics-il net>
Date: Thu, 12 Oct 2023 11:08:48 -0500 (CDT)
Do we know if the organizations with key Internet resources (ARIN, RIPE, PeeringDB, etc.) have any honeypots in their 
arsenal? Obviously, publicly knowing about it kind of defeats the purpose of it, but that might be a way to help be 
proactive - make fake entries with unique contact information to catch those harvesting. 




----- 
Mike Hammett 
Intelligent Computing Solutions 
http://www.ics-il.com 

Midwest-IX 
http://www.midwest-ix.com 

----- Original Message -----

From: "Mel Beckman" <mel () beckman org> 
To: "Tom Beecher" <beecher () beecher cc> 
Cc: "nanog () nanog org list" <nanog () nanog org> 
Sent: Thursday, October 12, 2023 11:01:20 AM 
Subject: Re: ARIN whois contact abuse from ipv4depot aka Silicon Desert International Inc 

Tom, 


When an ARIN member violates their agreement and spams from ARIN’s databases, it’s not just an “Internet is fertile 
ground” deal. It’s a betrayal of a legal trust, one that demands accountability. I’m quite happy that ARIN promptly 
responds to these abuses, and gets results. That only works if victims report spam and compare notes. Let the “fertile 
ground” be elsewhere! 


-mel beckman 



On Oct 12, 2023, at 8:49 AM, Tom Beecher <beecher () beecher cc> wrote: 




<blockquote>



<blockquote>
It's ridiculous that they resort to scraping public lists and DBs to try and achieve what they're attempting to do. 

</blockquote>



Everyone is always looking for information they can use to advance some agenda or purpose. The internet is fertile 
ground for that. Always has been, always will be. 


Not taking shots at anyone here, but I am boggled why this is a common public complaint. Block the sender and move on. 


On Wed, Oct 11, 2023 at 7:56 PM Peter Potvin via NANOG < nanog () nanog org > wrote: 

<blockquote>

Definitely have received this same spam multiple times and so have a few others I know. It's ridiculous that they 
resort to scraping public lists and DBs to try and achieve what they're attempting to do. 




Regards, 
Peter Potvin | Executive Director 
------------------------------------------------------------------------------ Accuris Technologies Ltd. 






On Wed, Oct 11, 2023 at 7:52 PM Eric Kuhnke < eric.kuhnke () gmail com > wrote: 

<blockquote>

Is anyone else receiving spam from this organization? Based on the contents of the cold solicitations they are sending 
us, and the addresses being sent to, they have scraped ARIN WHOIS data for noc and abuse POC contact info and recent 
ipv4 block transfers. 


It's trivially easy to block their entire domain at the mail server level, of course... 




</blockquote>

</blockquote>

</blockquote>
Previous By Date Next
Previous By Thread Next

Current thread: