Eric,

That's one of the reasons why I jumped on this.  I really don't have time to get "Droned".  My only early warning system is store bought ADS-B, and those devices are exempt from 14 CFR 91.225 & 91.227.  I wouldn't even see it coming.     

It's resolved now.  With the good help of this list.  I think I'm out of danger - for now. 

Pete
Stage2 "Survivor Island" Bronze Medal Winner



On 7/21/23 14:00, Eric Kuhnke wrote:
I might note for those who are unfamiliar with it, that the "Kratos" entity is a major US defense contractor and manufacturer of advanced UAVs, so if this issue is not addressed it has a high likelihood of getting attention from some of the more clued-in folks in the federal government.

https://en.wikipedia.org/wiki/Kratos_XQ-58_Valkyrie


On Thu, Jul 20, 2023 at 7:31 AM Pete Rohrman <prohrman@stage2networks.com> wrote:
NANOG,

A customer of Cogent has a compromised router that is announcing
prefixes sourced from AS 36471.   Cogent is propagating that to the
world.  Problem is, those prefixes and AS don't belong to that customer
of Cogent - AS 36471 belongs to Kratos Defense & Security Solutions,
Inc. (see whois).

Requests to Cogent Support and Abuse go un-actioned.  Need a contact at
Cogent Abuse that can shut down that compromised router.  Anyone have a
good contact at Cogent Abuse Dept?

Cogent ticket: HD302928500

Pete

--
Pete
Stage2 "Survivor Island" Bronze Medal Winner