[nsp-sec] attn YAHOO -- maliciosu FTP site in your network
Jose Nazario
jose at arbor.net
Mon Sep 1 00:50:47 EDT 2008
"md5hash","server ip","server hostname","port","user","password","command"
"5d2f370fe40603faaa7c4ea9f2c2c000","68.180.151.123","","21","nick5chocolate","default1","STOR cd_keys.txt"
AS | IP | AS Name
36752 | 68.180.151.123 | YAHOO-SP1 - Yahoo
FTP dir is live at present ...
-------------------------------------------------------------
jose nazario, ph.d. <jose at arbor.net>
security researcher, office of the CTO, arbor networks
v: (734) 821 1427 http://asert.arbornetworks.com/
More information about the nsp-security
mailing list