Expired and exploited: Reviving a 30-year-old legacy domain for hijacking

The report describes an investigation that found a domain using hijacked IP blocks routed from an Ashburn, VA data center (38.27.122.0/24, Fiberlink/Evoque). ARIN records linked that address space to several legitimate North American organizations, suggesting the domain is leveraging hijacked or misattributed infrastructure possibly for malicious activity or impersonation.