[nsp-sec] Korea telecom/KORNET?
Michael Sinatra
michael at rancid.berkeley.edu
Wed Mar 25 19:49:13 EDT 2009
Hi,
The host listed below has been engaging in very aggressive SSH
brute-force attacks on UC Berkeley's address space. What makes this
host different from the others is that:
1. It has been going on for *weeks* and is still going on.
2. abuse at kornet.net does not appear to be responding to request(s) to
make it stop.
AS | IP | Info | AS Name
4766 | 125.152.96.154 | 26-Mar-2009 00:42:21 | KIXS-AS-KR Korea Telecom
Is there anyone from Korea Telecom with clue that can put an end to this?
thx,
michael
More information about the nsp-security
mailing list