[nsp-sec] who to report abuse from *gae.googleusercontent.com to?
Chris Morrow
morrowc at ops-netman.net
Tue Oct 29 22:16:38 EDT 2013
On 10/29/2013 10:04:51 PM, Russell Fulton wrote:
> ----------- nsp-security Confidential --------
>
> HI
>
> We recently a bunch of attempts to access some library sites on our
> network using stolen credentials — nothing to unusual about that but
> during the investigation I found that some of the attempts came
> *.201.35.8.gae.googleusercontent.com.
use the source(whois data) luke:
CIDR: 8.35.200.0/21
OriginAS:
NetName: LVLT-GOOGL-2-8-35-200
NetHandle: NET-8-35-200-0-1
Parent: NET-8-0-0-0-1
NetType: Reallocated
RegDate: 2012-06-12
Updated: 2012-06-12
Ref: http://whois.arin.net/rest/net/NET-8-35-200-0-1
OrgName: Google Inc.
OrgId: GOOGL-2
Address: 1600 Amphitheatre Parkway
City: Mountain View
StateProv: CA
PostalCode: 94043
Country: US
RegDate: 2006-09-29
Updated: 2013-10-18
Comment: *** The IP addresses under this Org-ID are in use by
Google Cloud customers ***
Comment:
Comment: Please direct all abuse and legal complaints regarding
these addresses to the
Comment: GC Abuse desk (google-cloud-compliance at google.com).
Complaints sent to
Comment: any other POC will be ignored.
Ref: http://whois.arin.net/rest/org/GOOGL-2
OrgNOCHandle: GCABU-ARIN
OrgNOCName: GC Abuse
OrgNOCPhone: +1-650-253-0000
OrgNOCEmail: google-cloud-compliance at google.com
OrgNOCRef: http://whois.arin.net/rest/poc/GCABU-ARIN
More information about the nsp-security
mailing list