He didn’t, I was just referencing Mimecast to indicate it was probably larger than Charter’s DNS.  Given the reports that someone else gave from Virustotal, it seems it’s more widespread than first reported.

 

Greg Dickinson, CCNA

Network Engineer

 

mid:ac0798f5d04aec2c4c40f9c44056646c8ba72bfb332f7f64d451d99665886e29@getboxer.com/image001.png@01D2DDE3.06E76B70

 

From: NANOG <nanog-bounces+greg.dickinson=bryantbank.com@nanog.org> On Behalf Of Bryan Fields
Sent: Wednesday, October 25, 2023 2:51 PM
To: nanog@nanog.org
Subject: Re: Charter DNS servers returning invalid IP addresses

 

 

This Message originates from outside Bryant Bank.   Please use caution when opening this correspondence, attachments or hyperlinks (URLs).  If you have questions, please contact IT Support.  Thank you.

On 10/25/23 2:41 PM, Greg Dickinson wrote:
> If it helps troubleshooting, when I click the domain in the email Mimecast
> tells me:
>
> “We checked the website you are trying to access for malicious and
> spear-phishing content and found it likely to be unsafe.”

I saw nothing referencing Mimecast in the original email. Where did you see this?

bonesinjars.com is not signed with DNSSEC. This is trivial to setup and might
prevent some of this.

Probably not a good idea for your customers to rely on $BIGCABLE DNS servers.
--
Bryan Fields

727-409-1194 - Voice
http://bryanfields.net



NOTICE: This electronic mail message and any files transmitted with it are intended exclusively for the individual or entity to which it is addressed. The message, together with any attachment, may contain confidential and/or privileged information. Any unauthorized review, use, print, save, copy, disclosure or distribution is strictly prohibited. If you have received this message in error, please immediately advise the sender by reply email and delete copies.  Thank you.