[nsp-sec] Stolen FTP credentials
Gert Doering
gert at greenie.muc.de
Tue Feb 15 08:59:54 EST 2011
Hi,
On Tue, Feb 15, 2011 at 02:35:24PM +0100, Dirk Stander wrote:
> please find attached a list of stolen FTP-credentials, which have
> been used to inject IFrames (pointing to visions7[.]net or axstat[.]com)
> into legitimate web sites.
>
> The format of the list is:
> <ASN> | <IP> | <CC> | <domain name> <user> <pass> | <AS desc>
>
> kind regards, Dirk Stander (1&1 Internet AG) :.
Thanks, and ACK for 5539. All references to nsp-sec or your name removed
and forwarded to the cluebat-swinging department.
(How annoying, usually we only have one or two hosts on these lists, or
none at all, but this time it's *10*).
gert
--
Gert Doering
SpaceNet AG, AS 5539, gert at space.net. PGP-KeyID: 0x65514975
Also reachable via gert at greenie.muc.de and gert at net.informatik.tu-muenchen.de
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 305 bytes
Desc: not available
URL: <https://puck.nether.net/mailman/private/nsp-security/attachments/20110215/ab45c0e7/attachment-0001.sig>
More information about the nsp-security
mailing list