[anti-abuse-wg] Fwd: Re: botnet controllers

I would not be so quick in judging Spamhaus to be evil or even worse,
illegal.

We've encountered C2s (malware control server) which are pure evil and
illegal in most countries but running over VPNs. Having a VPN service
provider who claims not being able to stop service for the customer who
is running C2, that I would say is not legal.

Therefore, it's important to make sure we take care of our own services
first before we look at what others do.

KR

Tonu
CERT-EE

On 08.07.2020 21:46, info at fos-vpn.org wrote:
> All I would like from Spamhaus is to stop publishing fake SBL records
> in order to discredit us and to use that to put pressure both upon us
> and our upstreams.
> Non-logging VPN services are as legal within the EU as Exit Nodes of
> the Tor Network (which have massive abuse entries in various data
> bases, especially the larger ones) and public WiFi Hotspots, which can
> be used for abusive activities, too.
>
> I don't know who "PP" is (probably the same person which posts under
> the nickname "Petras Simeon" on Twitter and on various boards), but he
> contacted us and our upstream providers without telling his name, just
> using this email address: phishphucker at storey.ovh and sending us the
> list of SBL entries which he also posted here.
> Don't know if he's working for Spamhaus or not, but before attacking
> others publicly, people should reveal their true identity, anything
> else would be sneaky in my opinion.
>