From: NANOG On Behalf Of Martin
> Hannigan
> Sent: Wednesday, October 20, 2021 11:44 PM
> To: Omar Haider
> Cc: nanog
> Subject: Re: [External] Re: Anyone else getting the 'spam' bomb threat?
>
>
>
> WARNING: This messag
> *Subject:* Re: [External] Re: Anyone else getting the 'spam' bomb threat?
>
>
>
> WARNING: This message originated outside of Ford Motor Company. Use
> caution when opening attachments, clicking links, or responding.
>
>
>
>
>
> Hi Omar,
>
>
>
So what ever happened to the threatener? Was he caught?
From: NANOG On Behalf Of Martin
Hannigan
Sent: Wednesday, October 20, 2021 11:44 PM
To: Omar Haider
Cc: nanog
Subject: Re: [External] Re: Anyone else getting the 'spam' bomb threat?
WARNING: This message originated outside of Ford
Hi Omar,
This is likely a hoax. Probably a “joe job” - making it appear as someone
innocent is responsible. Its good to share this info to raise network
operators awareness since even if it is fake its concerning how many
received it.
I’ll leave it to the pros here to tell us if we shouldn’t
I put what we received up on pastebin entirely with headers (and redacted
our info).
https://pastebin.com/kLjPm8Nk
Warm regards,
-M<
On Wed, Oct 20, 2021 at 9:19 AM Radu-Adrian Feurdean <
na...@radu-adrian.feurdean.net> wrote:
> On Tue, Oct 19, 2021, at 16:00, Hunter Fuller via NANOG wrote:
On Tue, Oct 19, 2021, at 16:00, Hunter Fuller via NANOG wrote:
> We have a distinct abuse address (not just abuse@) and that is where
> the messages were sent.
>
> We didn't receive the bomb threat ones. We only received the (somewhat
> more amusing) messages entitled "Your network has been PWNED"
On Tue, 19 Oct 2021 at 19:20, Kain, Becki (.) wrote:
> The thing is, who is in office to care? Oh wait, guess equipment *is*
> important
>
>
For how long did you keep up with the evacuation of the equipment? :-)
scammers and attackers aren't well known for their eloquent prose...
As soon as you decide to not take one thing seriously, how do you draw the
line? three spelling mistakes and the wrong tense of a verb means its fake?
I'd rather not play chicken with peoples' lives.
On Tue, Oct 19, 2021,
Honestly, for how 'spammy' that e-mail looked it's hard to believe
anyone took it seriously - but also, you never know.
On 10/19/21 12:51 PM, Jon Sands wrote:
The kid sending these (if it is Bytefend, who has a history/tweets of
bragging about attacking Frantech within the past month if I
The thing is, who is in office to care? Oh wait, guess equipment *is* important
-Original Message-
From: NANOG On Behalf Of Sadiq Saif
Sent: Tuesday, October 19, 2021 9:11 AM
To: nanog@nanog.org
Subject: Re: Anyone else getting the 'spam' bomb threat?
WARNING: This message originated
The kid sending these (if it is Bytefend, who has a history/tweets of
bragging about attacking Frantech within the past month if I understand
correctly) is going to be looking at serious jail time given the amount of
evacuations he's caused already. A brief list:
Matt Hoppes wrote:
I've now heard from several operators - our selves included - about
getting an e-mail bomb threat to our datacenters asking for $5,000 USD
or the "bomb will be detonated".
Is this being seen on a wide spread e-mail blast to the RIR contacts,
or am I just unlucky to know
We have a distinct abuse address (not just abuse@) and that is where
the messages were sent.
We didn't receive the bomb threat ones. We only received the (somewhat
more amusing) messages entitled "Your network has been PWNED" and
"Fuck you".
The situation loses its humor entirely with the
On Tue, 19 Oct 2021, at 08:40, Matt Hoppes wrote:
> Are you contacting your LEO? Or is this so spammy just hit delete?
>
> I feel like even spam chosen poorly comes with consequences.
I hit delete after I saw Frantech had already reported it the FBI as per their
website.
Whoever this is seems
10/19/21 8:32 AM
To: Matt Hoppes
Cc: "Nanog@nanog.org"
Subject: RE: Anyone else getting the 'spam' bomb threat?
Yup, same here
Travis
From: NANOG On Behalf Of
Shawn L via NANOG
Sent: Tuesday, October 19, 2021 7:25 AM
To: Matt Hoppes
Cc: North American Network Operators' Group
Subj
Yes, it's from the operator of bytefend and they have been sending numerous
threatening emails for months.
You can check the statement from the victim Frantech from the link below:
https://frantech.ca/
On Tue, Oct 19, 2021 at 9:34 PM Ray Bellis wrote:
>
>
> On 19/10/2021 13:29, Travis
On 19/10/2021 13:29, Travis Garrison wrote:
> Yup, same here
and here.
For now we're just ignoring it, but if anyone wants to quote us (ISC, a
DNS root server operator) in the event of law enforcement action please
let me know.
Ray
' bomb threat?
Yup, same here
Travis
From: NANOG On Behalf Of
Shawn L via NANOG
Sent: Tuesday, October 19, 2021 7:25 AM
To: Matt Hoppes
Cc: North American Network Operators' Group
Subject: RE: Anyone else getting the 'spam' bomb threat?
we received it as well
-Original Message
*To:* Matt Hoppes
*Cc:* North American Network Operators' Group
*Subject:* RE: Anyone else getting the 'spam' bomb threat?
we received it as well
-Original Message-
From: "Matt Hoppes" <mailto:mattli...@rivervalleyinternet.net>>
Sent: Tuesday, October 19, 2021 8:21am
Yup, same here
Travis
From: NANOG On Behalf Of
Shawn L via NANOG
Sent: Tuesday, October 19, 2021 7:25 AM
To: Matt Hoppes
Cc: North American Network Operators' Group
Subject: RE: Anyone else getting the 'spam' bomb threat?
we received it as well
-Original Message-
From: "Matt H
we received it as well
-Original Message-
From: "Matt Hoppes"
Sent: Tuesday, October 19, 2021 8:21am
To: "North American Network Operators' Group"
Subject: Anyone else getting the 'spam' bomb threat?
I've now heard from several operators - our selves included -
I've now heard from several operators - our selves included - about
getting an e-mail bomb threat to our datacenters asking for $5,000 USD
or the "bomb will be detonated".
Is this being seen on a wide spread e-mail blast to the RIR contacts, or
am I just unlucky to know like 6 other data
22 matches
Mail list logo
