Am 02.01.2024 um 06:34:27 Uhr schrieb Michael via mailop:
> blocking AUTH from cloud providers that don't quickly respond to
> abuse complaints, is the way to go
Blocking SMTP generally from such providers is considerable if they let
abusers continue to abuse their services. :-)
For the record,it's all of the Azure, Google, AWS Cloud, Tencent and
many other cloud providers that are now abused for BEC Email Compromise,
and dictionary attacks.
Since very few 'servers' are used for email authentication/clients it is
quite effective to block email auth from those
> Am 01.01.2024 um 01:46:44 Uhr schrieb Randolf Richardson, Postmaster
> via mailop:
>
> > Is anyone seeing large numbers of dictionary attacks from
> > 20.42.100.251 (which is owned by Microsoft)? I'm curious if they're
> > engaging in large-scale targeting.
>
> Doesn't have a PTR, so no
Am 01.01.2024 um 01:46:44 Uhr schrieb Randolf Richardson, Postmaster
via mailop:
> Is anyone seeing large numbers of dictionary attacks from
> 20.42.100.251 (which is owned by Microsoft)? I'm curious if they're
> engaging in large-scale targeting.
Doesn't have a PTR, so no regular mail
Is anyone seeing large numbers of dictionary attacks from
20.42.100.251 (which is owned by Microsoft)? I'm curious if they're
engaging in large-scale targeting.
I'm seeing more than 2,000 attempts daily from 20.42.100.251 against
mail account local-parts like "test" and
