This affidavit is actually weak if you look into the details and know how SpiderFoot works.
Following claims in the affidavit are not true:
- Edisonresearch server in Iran - SpiderFoot only shows there (possibly) exists a domain edisonresearch.xn--iran.ir but when they later show the screenshot from Robtex it does not prove anything, rather the contrary(!), you can put any made-up subdomain for the domain and you will get exactly the same result in Robtex. It does not proof connection to iran at all.
Also, vps2.edisonresearch.com pointing to an IP that is now used by BMA captial (speaking of BMA, the have connections to Pakistan and perpahs Iran too) is suspicious but does not prove anything (could be just a same hosting provider and edisonresearch did not remove DNS record after they stopped using the server). Yes, it's suspicious but does not prove anything.
There is no proof of dominionvotingsystems.com relation to Dominion Voting - yes it is suspicious that someone registered that domain in 2011 already, but they could claim it's just chinese scammers.
Why is whois provided as screenshot from twitter ??
Why is that screenshot of CHINA Unicom China169 provided?
-
That robtex search is for a different domain (!) it is for xn--iran.tk (not .ir (!))
-
The dvscopr domains listed in this section are not registered. Those could be false positives from SpiderFoot.
台灣 is Taiwan, not china, this mistake is understandable but easily provable even to a layman and can lead to throwing the affidavit completely.
Overall it's an interesting analysis but should have been double checked, there are several mistakes that discredit the findings (not sure if that's on purpose or sloppy work regarding ruling out false positives).
Paragraph 7. is also interesting saying they got passwords of 7 employees (if true) and would indicate they have much more info than publicly shared. We will see, but this affidavit actually disappointed me, sloppy with obvious big mistakes - compare that to Hunter's leak where we get the emails with DKIM signature headers so there is no doubt at all it's real and tons of other undisputable evidence.
This affidavit is actually weak if you look into the details and know how SpiderFoot works.
Following claims in the affidavit are not true:
- Edisonresearch server in Iran - SpiderFoot only shows there (possibly) exists a domain edisonresearch.xn--iran.ir but when they later show the screenshot from Robtex it does not prove anything, rather the contrary(!), you can put any made-up subdomain for the domain and you will get exactly the same result in Robtex. It does not proof connection to iran at all.
Also, vps2.edisonresearch.com pointing to an IP that is now used by BMA captial (speaking of BMA, the have connections to Pakistan and perpahs Iran too) is suspicious but does not prove anything (could be just a same hosting provider and edisonresearch did not remove DNS record after they stopped using the server). Yes, it's suspicious but does not prove anything.
There is no proof of dominionvotingsystems.com relation to Dominion Voting - yes it is suspicious that someone registered that domain in 2011 already, but they could claim it's just chinese scammers.
Why is whois provided as screenshot from twitter ??
Why is that screenshot of CHINA Unicom China169 provided?
-
That robtex search is for a different domain (!) it is for xn--iran.tk (not .ir (!))
-
The dvscopr domains listed in this section are not registered. Those could be false positives from SpiderFoot.
台灣 is Taiwan, not china, this mistake is understandable but easily provable even to a layman and can lead to throwing the affidavit completely.
Overall it's an interesting analysis but should have been double checked, there are several mistakes that discredit the findings (not sure if that's on purpose or sloppy work regarding ruling out false positives).
Pagraph 7. is also interesting saying they got passwords of 7 employees (if true) and would indicate they have much more info than publicly shared. We will see, but this affidavit actually disappointed me, sloppy with obvious big mistakes - compare that to Hunter's leak where we get the emails with DKIM signature headers so there is no doubt at all it's real and tons of other undisputable evidence.