Whois info has been used to target businesses I've worked for. In one instance they used that info to try and social engineer their way into getting access to the company network. The person who answered the call was suspicious that somebody who she knew had gone to the gents, had lost their password. It wasn't the most intelligent attack using the person listed as technical contact for the name chosen.
Biting the hand that feeds IT
