ARIN Fraud Reporting Results - 4th Quarter 2008 [Archived]

OUT OF DATE?

Here in the Vault, information is published in its final form and then not changed or updated. As a result, some content, specifically links to other pages and other references, may be out-of-date or no longer available.

Fraud Reports Received:

  • 20081010-F1
  • 20081010-F21
  • 20081011-F22
  • 20081013-F23
  • 20081107-F41
  • 20081111-F61
  • 20081111-F81
  • 20081113-F42
  • 20081125-F101
  • 20081128-F102
  • 20081217-F103

Total Fraud Reports received this quarter = 11

Investigation Results

During this quarter, there was one report of suspected Internet number resource fraud, specifically a hijacking of IPv4 address blocks. The results of this fraud investigation are as follows:

[ARIN-20081125-F101] Fraud Report Confirmed

ARIN staff completed its research of the address block [xxx.xx.xx.x] and based on our analysis of the historical changes made in the ARIN database, ARIN saw no evidence that this block had been hijacked in ARIN’s database. ARIN’s determination of a hijacking is based only on those changes made to an IP address block’s registration record in ARIN’s database. From an ARIN perspective, a hijacking occurs when an individual or organization targets IP resources to make unauthorized changes to registration records in the ARIN database. No further action was taken.

The remaining 10 fraud reports received during this quarter were reports of incidents related to phishing, spam, identity theft, stalking/harassment, etc. ARIN was unable to investigate any of these reports, as they were out of scope of ARIN’s mission.

ARIN’s response to each of these reports has been to let the reporter know the fraud reporting process is for matters specifically related to ARIN’s mission and area of authority such as false utilization reporting, number resource hijacking in ARIN’s database, and other activity involving fraudulent submissions to ARIN or fraudulent changes to data in ARIN’s WHOIS. In each of these report responses, ARIN staff has attempted to provide useful information to the reporter if the report isn’t something we can directly assist with, such as information on querying WHOIS, contact information for the network operator associated with a given IP address, etc. No further action was taken.

OUT OF DATE?

Here in the Vault, information is published in its final form and then not changed or updated. As a result, some content, specifically links to other pages and other references, may be out-of-date or no longer available.