I work for a service provider, and we've suffered an attack. We've learned from it, but nonetheless it has cost us. The good thing is we have pcap traces of the event, and IP addresses.
Now my question is, how does one send a good abuse mail to the other provider?
The situation complicates, because there is money involved, and the other provider is a regular ISP serving private people, in another country. We'd love to see our money back, but has anyone ever succeeded at doing that?
Best Answer
Are you a technical person? if so then I'd strongly advise that you don't get directly involed in this - get a 'business' person to own this issue. Help them with supporting information as much as you like but don't mix technical detail and business-to-business financial/legal dealings, you have literally nothing to gain if it goes well and everything to lose if it doesn't. There's always going to be someone more appropriate in a business to handle this kind of thing than the guy who spotted or fixed it - get them to do this work, not you.
Of course if you're not the technical person and you are responsible for handling this kind of thing, well if you've come here to find out then I'd suggest you speak to your company's lawyers instead.
Good luck.