[nsp-sec] SQL injections in focus
Huopio Kauto
Kauto.Huopio at ficora.fi
Mon May 12 08:12:38 EDT 2008
Hello all,
Dominic White has written an update at his blog
on the SQL injection attack situation:
http://singe.za.net/blog/archives/906-SQL-injections-going-mad.html
A quick analysis on the domains mentioned at the blog entry:
nihaorr1.com. 2843 IN A 60.169.3.130
4134 | 60.169.3.130 | CHINANET-BACKBONE No.31,Jin-rong Street
2117966.net is NXDOMAIN at the moment
aspder.com. 3600 IN A 60.172.219.4
4134 | 60.172.219.4 | CHINANET-BACKBONE No.31,Jin-rong Street
haoliuliang.net. 7200 IN A 0.0.0.0
nmidahena.com is NXDOMAIN at the moment
free.hostpinoy.info. 86400 IN A 209.51.196.254
10297 | 209.51.196.254 | COLUMBUSNAP - The Columbus Network Access
Point, Inc.
xprmn4u.info. 14400 IN A 217.199.217.9
34221 | 217.199.217.9 | QL-AS JSC QUICKLINE Autonomous System
winzipices.cn. 3600 IN A 60.191.239.221
4134 | 60.191.239.221 | CHINANET-BACKBONE No.31,Jin-rong Street
wowgm1.cn. IN A
blank A-record
killwow1.cn. 3600 IN A 60.169.3.130
4134 | 60.169.3.130 | CHINANET-BACKBONE No.31,Jin-rong Street
wowyeye.cn. IN A
blank A-record
Any comments/observations on this issue?
--Kauto
Kauto Huopio - kauto.huopio at ficora.fi
Senior information security adviser
Finnish Communications Regulatory Authority / CERT-FI
tel. +358-9-6966772, fax +358-9-6966515, mobile +358-50-5826131
More information about the nsp-security
mailing list