Skip to content

Security: phishdestroy/nicenic-evidence

Security

SECURITY.md

Security Policy

About This Repository

This repository contains threat intelligence and abuse evidence collected during a formal security investigation of NICENIC INTERNATIONAL GROUP CO., LIMITED (IANA #3765).

All data was obtained exclusively from public sources:

  • ICANN Centralized Zone Data Service (CZDS) — zone files, accessed under approved research agreement
  • Public WHOIS servers — registration metadata designated public by ICANN policy
  • Active HTTP/DNS probing of publicly accessible endpoints
  • Certificate Transparency logs (crt.sh, Google CT)

No systems were accessed without authorisation. No private data was collected.

Reporting a Security Issue in This Repository

If you believe any file in this repository contains unintentionally exposed personal data (e.g. a real victim's credentials), please report it privately so we can redact it before public disclosure:

Contact: security@phishdestroy.io
Response time: 48 hours

DMCA / Takedown Notices

This repository is protected under:

  • 17 U.S.C. § 1201(j) — security research exemption
  • ICANN CZDS Access Agreement — permits abuse reporting and security research
  • GitHub's own policies on security research and threat intelligence

All WHOIS data published here is designated public by ICANN's Registrar Accreditation Agreement (RAA §3.3.1). Registrars have no copyright interest in WHOIS data they are contractually required to publish.

DMCA counter-notice will be filed immediately for any removal attempt. Evidence packages are preserved off-platform and with third-party archival services.

Coordinated Disclosure

Findings were submitted to:

  • ICANN Contractual Compliance (RAA §3.18 complaint)
  • Relevant brand protection teams and affected organisations
  • Law enforcement where applicable

There aren't any published security advisories