[nsp-sec] DDoS against several .gov.co

Carles Fragoso cfragoso at cesicat.cat
Thu Apr 14 04:51:52 EDT 2011 

David,

I will be glad to help you intelligence gathering and coordination with local law enforcement agencies and internet service providers in Spain.

If you are interested please drop me an email offlist.

Regards,

-- Carlos Fragoso (CESICAT-CERT) Barcelona, Spain


On Apr 14, 2011, at 3:15 AM, David Jiménez wrote:

----------- nsp-security Confidential --------

Hi folks,

Anonymous Chapters from Mexico, Colombia, Spain, Argentina and other
countries started a DDoS against the Colombian senate, presidential,
justice ministry and the e-government pages since April 11 at 19hrs
(GMT).

Colombian Government is in the way to establish its own CERT, right
now they are asking other CERTs in the region for help in order to
track this activity outside Colombia and directed to the following
IPs:

Host name: www.senado.gov.co<http://www.senado.gov.co>
IP address: 201.245.176.100

Host name: www.gobiernoenlinea.gov.co<http://www.gobiernoenlinea.gov.co>
IP address: 201.234.78.92

Host name: www.presidencia.gov.co<http://www.presidencia.gov.co>
IP address: 190.66.1.211

Host name: www.mij.gov.co<http://www.mij.gov.co>
IP address: 190.27.214.226

Host name: www.mintic.gov.co<http://www.mintic.gov.co>
IP address: 184.106.30.254


It would be great If you can help us to track the activity to this IPs
to share them afterwards, Mexican, Spanish, Colombian and Argentinian
hacktivists are involved in the attack, because the approval of the
Lleras Law in Colombia. The Federal Police of Colombia have warned
Colombian ISPs and the Presidential Office.

Thanks for your help.

--
--
--
Inspector David Jimenez  (GCIA, GCFW)
--------------------------------------------------------------------------------------------------------------
CERT-MX Operations Director
E-Crime Prevention Unit
Scientific Division, Mexico Federal Police/SSP
PGP: 1937 EF11 0521 B628 7228 4699 2BAE 4D94 778B 1885



_______________________________________________
nsp-security mailing list
nsp-security at puck.nether.net<mailto:nsp-security at puck.nether.net>
https://puck.nether.net/mailman/listinfo/nsp-security

Please do not Forward, CC, or BCC this E-mail outside of the nsp-security
community. Confidentiality is essential for effective Internet security counter-measures.
_______________________________________________

More information about the nsp-security mailing list