[nsp-sec] Stolen FTP credentials ACK AS209
Hicks, Howard
Howard.Hicks at qwest.com
Thu Apr 28 10:44:28 EDT 2011
ACK AS209 Thanks!
209 | 208.45.221.42 | US | ftp.ceresglobal.com | csi | C$****** | ASN-QWEST - Qwest Communications Company, LLC | abuse at qwest.net
209 | 208.45.221.42 | US | ftp.ceresglobal.com | portcanaveral | pc****** | ASN-QWEST - Qwest Communications Company, LLC | abuse at qwest.net
209 | 208.45.221.42 | US | ftp.ceresglobal.com | secaucus | c3****** | ASN-QWEST - Qwest Communications Company, LLC | abuse at qwest.net
209 | 208.46.4.16 | US | ftp.pbsj.com | bibe | !b****** | ASN-QWEST - Qwest
--
Howard Hicks
> -----Original Message-----
> From: nsp-security-bounces at puck.nether.net
> [mailto:nsp-security-bounces at puck.nether.net] On Behalf Of
> Thomas Hungenberg
> Sent: Thursday, April 28, 2011 4:23 AM
> To: nsp-sec
> Subject: [nsp-sec] Stolen FTP credentials
>
> ----------- nsp-security Confidential --------
>
> Hi,
>
> please find below a list of stolen FTP login credentials
> found in a FTP grabber dropzone.
> According to timestamps, the credentials were harvested on
> infected client PCs
> from 2011-04-20 until 2011-04-25.
>
> Format: ASN | IP | CC | hostname | username | sanitized
> password | AS desc | Abuse contact
>
>
> - Thomas
>
> CERT-Bund Incident Response & Anti-Malware Team
>
> _______________________________________________
> nsp-security mailing list
> nsp-security at puck.nether.net
> https://puck.nether.net/mailman/listinfo/nsp-security
>
> Please do not Forward, CC, or BCC this E-mail outside of the
> nsp-security
> community. Confidentiality is essential for effective
> Internet security counter-measures.
> _______________________________________________
>
This communication is the property of Qwest and may contain confidential or
privileged information. Unauthorized use of this communication is strictly
prohibited and may be unlawful. If you have received this communication
in error, please immediately notify the sender by reply e-mail and destroy
all copies of the communication and any attachments.
More information about the nsp-security
mailing list