Skip to main content

Phishing Email Alert for RIPE NCC Members

ripe ncc security news ips and asns

We have received multiple reports of a phishing email targeting RIPE NCC members and impersonating the RIPE NCC compliance team. The email has the following subject: “RIPE NCC Audit - Resource Discrepancies Detected”. The email contains a false message stating that the LIR account has been “selected for an audit” and urges the recipient to download a file in order to review their resources within 48 hours.

This email does not originate from the RIPE NCC and contains a malicious attachment. Please do not click on or download the attachment and further please do not reply to or engage with the sender in any way.

How to identify official communications from the RIPE NCC:

  • Emails from the RIPE NCC are sent from the official domain (@ripe.net). 
  • Important member communications are shared on the RIPE NCC Announce and/or Members-Discuss mailing lists. 
  • Important communications are shared as news items on the website (www.ripe.net).

You can review your resources directly in the LIR Portal using your RIPE NCC Access account.

If you have any doubts about the legitimacy of an email from the RIPE NCC, or have security-related questions, please contact us at [email protected]. For any other questions concerning your resources, please contact [email protected].

Our most recent official communication concerning reviewing member resources is available here.