On 2026-06-02 at 10:00 -0700, Randolf Richardson, Postmaster via mailop wrote: > I'm upgrading my recommendation to blocking 158.94.208/22, > unless > you've got counter-measures, honeypots, etc., in place that can > competently process their hacking attempts...
By the way, Omegatech has some other ranges as well, which they helpfully document in their geofeed: 178.16.52.0/22 91.92.240.0/22 158.94.208.0/22 45.132.180.0/24 146.19.125.0/24 They also list these two ranges, which whois doesn't point to them: 94.154.35.0/24 → Pitline.net ISP clients 130.12.180.0/24 → Virtualine Technologies albeit I see emails matching the Omegatech behavior from 94.154.35.0/24 until mid-February and connections (that didn't materialise into emails) from 130.12.180.0/24, so it's probably appropriate to still consider them part of Omegatech. The main activity comes from the three /22, though. _______________________________________________ mailop mailing list [email protected] https://list.mailop.org/listinfo/mailop
