2022 7:22 PM
To: mailop@mailop.org
Subject: Re: [mailop] Anyone heard of this network? Looks like a spear phishing
operation?
As someone else already pointed out..
Your 'rwhois' could use updating.
Currently it suggest ab...@heficed.com, but there is no abuse contact field in
the standard fields.
> RIPE says it's IPXO Limited, at a mail drop in suburban London, a phone
> number in Lithuania, and a tech contact at an address in Paris with
> no hint that he works there. Sounds totally legit to me.
IPXO Ltd (London) is Heficed (Lithuania). According to their home page,
they are a "Fully
As someone else already pointed out..
Your 'rwhois' could use updating.
Currently it suggest ab...@heficed.com, but there is no abuse contact
field in the standard fields.
'Within' your IP Space, could you be clearer on your IP space?
And the phone number is in Lithunia. Transparency is
Thanks a lot for bringing this up! The range appears to have been hijacked.
We have checked and it seems this subnet has been continued to be illegally
used past service termination. We have taken all necessary actions to handle it
and take the network down.
We will work on strengthening our
On Wed, 2 Feb 2022, Michael Peddemors via mailop wrote:
But of course I could be wrong, and it has some form of valid use..
But none of the names match up to host records.. Just some significant names
there, and thought better get the work out.
# -- IPXO_141_11_29 [141.11.29.0/24]
rwhois
