Contacting Giant Corporations?

[d at securi-d.com (Dave)]

You guy's might like to contact you local Infragard chapter. They
might be able to help.

On 10/20/09, Dan Baxter <danthemanbaxter at gmail.com> wrote:
> I'll be interested to see your responses to this, as I've got a similar
> situation.  I recently identified some IRC Botnet traffic leaving our
> corporate network.  I'm blocking it with IPS, but it's all headed to a
> specific IP.  I've traced this IP to a physical therapy facility.
>
> I've attempted to contact them twice.  Once I was put through to the owner's
> voicemail.  I briefly identified myself as an information security
> professional for a corporation and that I had information regarding a server
> of theirs that may be hosting malicious software.  I didn't receive a
> response.  So, a few days later, I called again.  This time, someone took my
> contact information and said their "IT guy" would contact me.  That was over
> a week ago and still nothing.
>
> I have a feeling this box is owned six ways to Sunday.  The idea that it's
> potentially hosting medical records makes this even worse.  How persistent
> should I be in attempting to contact them?
>
>
> Dan Baxter
> -------------------------------------------------
> Quis custodiet ipsos custodes?

-- 
Sent from my mobile device

--
Blog: www.securi-d.com
Podcast: www.securityjustice.com