[195747] in North American Network Operators' Group
Re: Internet access for security consultants - pen tests, attack
daemon@ATHENA.MIT.EDU (Tim Pozar)
Mon Sep 11 23:47:42 2017
X-Original-To: nanog@nanog.org
To: Sean Pedersen <spedersen.lists@gmail.com>, nanog@nanog.org
From: Tim Pozar <pozar@lns.com>
Date: Mon, 11 Sep 2017 15:58:10 -0700
In-Reply-To: <002c01d32b4e$fb9b9fc0$f2d2df40$@gmail.com>
Errors-To: nanog-bounces@nanog.org
Ping the DNC? :-)
https://www.wired.com/story/the-dncs-technology-chief-is-phishing-his-staff-good/
Tim
On 9/11/17 3:40 PM, Sean Pedersen wrote:
> We were recently approached by a company that does security consulting. Some
> of the functions they perform include discovery scans, penetration testing,
> bulk e-mail generation (phishing, malware, etc.), hosting fake botnets -
> basically, they'd be generating a lot of bad network traffic. Targeted at
> specific clients/customers, but still bad. As an ISP, this is new territory
> for us and there are some concerns about potential impact, abuse reports,
> reputation, authorization to perform such tests, etc.
>
>
>
> Does anyone have experience in this area that would be willing to offer
> advice?
>
>
>
>
>
