[nsp-sec] DDoS targeting 77.87.225.2

Thomas Hungenberg th.lab at hungenberg.net
Thu Jul 16 06:29:41 EDT 2009

Previous message: [nsp-sec] AS46475 - Limestone Networks, Inc.
Next message: [nsp-sec] DDoS targeting 77.87.225.2
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi teams,

there is an ongoing tcp syn flood attack (starting ~ 23.30 UTC last night)
targeting 77.87.225.2:80 (www.deutschland.de).

It appears the source IPs are not spoofed. Most of the sources are within
187/8, 189/8, 190/8, 200/8 and 201/8.

Anyone having any background info on this?


     - Thomas

CERT-Bund Incident Response & Anti-Malware Team

Previous message: [nsp-sec] AS46475 - Limestone Networks, Inc.
Next message: [nsp-sec] DDoS targeting 77.87.225.2
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the nsp-security mailing list