[nsp-sec] Stolen FTP credentials - ACK: 8434
Helge Aksdal
helge.aksdal at telenor.com
Thu Apr 28 09:31:32 EDT 2011
* Thomas Hungenberg (2011-04-28 11:23):
> Hi,
>
> please find below a list of stolen FTP login credentials found in a FTP grabber dropzone.
> According to timestamps, the credentials were harvested on infected client PCs
> from 2011-04-20 until 2011-04-25.
>
> Format: ASN | IP | CC | hostname | username | sanitized password | AS desc | Abuse contact
>
> - Thomas
>
> CERT-Bund Incident Response & Anti-Malware Team
>
> 8434 | 62.119.28.118 | SE | gw-gruppen.se | gw-grupp | TG****** | TELENOR-SE Telenor Sweden | abuse at telenor.se
Ack. Thanks for sharing!
--
Helge Aksdal
Telenor
More information about the nsp-security
mailing list