“Hey old guys! Does this still work?” – MIB
Good evening gentlemen and ladies,
I am a long time security professional straddling Risk, IR, and Technical Defense .. I am probably about to become a statistic of INFOSEC burnout – nonetheless..
My real question is:
Is it worth the time and effort in a fluidly free-flowing security-driven environment to take time out of your day to report abuse to entities such as Google, OVH, AWS, or Microsoft on basic malicious behavior? As opposed to blocking, and moving on to the next aggressor?
Basic malicious behavior meaning: Port Scanning, Phishing, SPAM, etc.. maybe even basic exploit attempts that set off your IPS..
I want to know the general consensus..
“Should I tell Google they sent me a shit email?”
Example: Gmail address phish – > Should we report?
Please.. you have the floor.