January 14, 2021

SPAM, PHISHING, BOT Activity – Report or NOT Report

“Hey old guys! Does this still work?” – MIB

Good evening gentlemen and ladies,

I am a long time security professional straddling Risk, IR, and Technical Defense .. I am probably about to become a statistic of INFOSEC burnout – nonetheless..

My real question is:

Is it worth the time and effort in a fluidly free-flowing security-driven environment to take time out of your day to report abuse to entities such as Google, OVH, AWS, or Microsoft on basic malicious behavior? As opposed to blocking, and moving on to the next aggressor?

Basic malicious behavior meaning: Port Scanning, Phishing, SPAM, etc.. maybe even basic exploit attempts that set off your IPS..

I want to know the general consensus..

“Should I tell Google they sent me a shit email?”

Example: Gmail address phish – > Should we report?

Please.. you have the floor.

Leave a Reply

Your email address will not be published. Required fields are marked *

Note: By filling this form and submitting your commen, you acknowledge, agree and comply with our terms of service. In addition you acknowledge that you are willingly sharing your email address with AiOWikis and you might receive notification emails from AiOWikis for comment notifications. AiOWiksi guarantees that your email address WILL NOT be used for advertisement or email marketting purposes.

This site uses Akismet to reduce spam. Learn how your comment data is processed.