I had an incident report today which led to interesting findings.
A customer of ours reportedly received a voicemail from a mail address in integrated-usa.com’s domain. A quick NS lookup showed me that that particular domain is hosted on G’s servers and IBM X-Force had a 1 (lowest) risk score for the domain. When i tried to visit the address, however, i got a “502 – Bad gateway” from an nginx webserver.
I then googled for their name and grabbed a bunch of links and tried them, everyone returned a “502 – Bad gateway”.
I guess someone had a very bad security incident and utterly failed at reporting it?