Hi there, On Wed, 29 Jun 2022, Eric Tykwinski via clamav-users wrote:
Any one have an abuse contact for Cisco IronPorts hosted service? Customer of ours received a phishing email from a Cisco client but wasn't sent by them, at least that what I'm being told.
I don't think you can rely on the customer's say-so. You need to get a complete copy of the message - especially full headers - for analysis. Having said that here's a random hit: https://www.abuseipdb.com/check/184.94.240.92 If it's really Cisco, and all else fails, I'd send a report to the abuse address for cisco.com (and to SpamCop - Cisco owns SpamCop of course...:) -- 73, Ged. _______________________________________________ clamav-users mailing list [email protected] https://lists.clamav.net/mailman/listinfo/clamav-users Help us build a comprehensive ClamAV guide: https://github.com/Cisco-Talos/clamav-documentation https://docs.clamav.net/#mailing-lists-and-chat
