Verizon Advisory

Note: Verizon is our provider.

---

January 8, 2006: Considerable Improvement Noticed

Finally, there is a substantial decrease in Zombie originated spam from VOL's residential ranges. This may be due to greater responsiveness on the part of Verizon. It may also be due (at least in part) to the increased awareness and greater use of AV scanners as a result of the Microsoft vulnerability du jour. At this time, we are tracking few zombies from Verizon space. If that continues, we will remove the advisory.

---

For many months I tried to get Verizon to do something about various pervasive zombies from both dynamic and static ranges. Numerous complaints were unresolved, unanswered and, presumably, in Verizon's “abuse department” black hole.

November 23, 2005:

One of my pet peeves with Verizon is Sky Advertising (70.19.3.64 - 70.19.3.79); Sky spams with forged headers (including HELO as recipient domain and random, non-existent sender). Sky Advertising is clearly, a CanSpam violator. Now they are not only a criminal organization but their server is frequently exploited (it has become a zombie). While not on most RBLs, blocking 70.19.3.64/28 is a very good idea.

Complaints to Verizon not only don't get action; They are not even acknowledged.

Verizon has become heavily infiltrated with Zombies - primarily in dynamic space. Fortunately, Verizon has done one thing right by clearly identifying the vast majority of their dynamic hosts as "pool.*\.verizon\.net.

Verizon demonstrated leadership in blocking port 80 to prevent most of their residential customers from running web servers. Now they need to take it a step further by blocking port 25 except to their own mail servers.

If you are receiving spam from Verizon dynamic users, please correspond with abuse@verizon.net and reference this URL.