[nsp-sec] DDOS against .dk-media
Smith, Donald
Donald.Smith at qwest.com
Wed Sep 29 11:21:41 EDT 2010
Nothing here in netflow today for either of those IPs.
(coffee != sleep) & (!coffee == sleep)
Donald.Smith at qwest.com gcia
> -----Original Message-----
> From: nsp-security-bounces at puck.nether.net
> [mailto:nsp-security-bounces at puck.nether.net] On Behalf Of
> Christoph Sprongl
> Sent: Wednesday, September 29, 2010 12:04 AM
> To: nsp-security at puck.nether.net
> Subject: [nsp-sec] DDOS against .dk-media
>
> ----------- nsp-security Confidential --------
>
> Hi all,
>
> peter a well-known security guy send a request for help regarding a
> .dk-media DDOS.
> If someone can support him i would appreaciate it :-)
>
> christoph
>
>
> > Several Danish media sites are targeted with a DDoS attack.
> >
> > Have any of you observed DDoS activities against IP 80.63.11.95 or
> > 80.63.11.74?
> >
> > The servers are getting hammered with HTTP requests.
> >
> > A Wireshark dump is attached.
> >
> > Thanks.
> >
> > Med venlig hilsen // Kind Regards
> >
> >
> > Peter Kruse
> > Partner and Securityspecialist
> > CSIS Security Group A/S
> > http://www.csis.dk
> >
> > Vestergade 14 * 8660 Skanderborg * Denmark
> > Tel.: +45 8813 6030 * Mobile: +45 2849 0532
> > Fax: +45 2817 6030 * Email: pkr at csis.dk
> >
> > Key-ID: 0x49006F37
> >
> > Fingerprint: 6675 058F A96F 23A4
> > 7940 0ABA 3C89 2413 FC8C 901E
>
>
>
>
> _______________________________________________
> nsp-security mailing list
> nsp-security at puck.nether.net
> https://puck.nether.net/mailman/listinfo/nsp-security
>
> Please do not Forward, CC, or BCC this E-mail outside of the
> nsp-security
> community. Confidentiality is essential for effective
> Internet security counter-measures.
> _______________________________________________
>
This communication is the property of Qwest and may contain confidential or
privileged information. Unauthorized use of this communication is strictly
prohibited and may be unlawful. If you have received this communication
in error, please immediately notify the sender by reply e-mail and destroy
all copies of the communication and any attachments.
More information about the nsp-security
mailing list