[nsp-sec] Stolen FTP credentials ACK
SURFcert - Peter
p.g.m.peters at utwente.nl
Wed Mar 16 07:50:54 EDT 2011
SURFcert - Peter wrote on 16-03-2011 12:15:
>
> Prox-ACK for 21159.
For this ASN there was also a mysql account listed. And I have
confirmation that seems to indicate drive-by malware was inserted in the
database. Analysis is continueing. I might get some more information
later on.
--
Peter Peters /------\ SURFnet bv
SURFcert | SURF | cert.surfnet.nl
cert at surfnet.nl \-----\ \-----\ Postbus 19035
PGP Key ID 0x5A52C966 | CERT | NL-3501 DA Utrecht
+31 30 2305 305 \------/ fax: +31 30 2305 329
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 543 bytes
Desc: OpenPGP digital signature
URL: <https://puck.nether.net/mailman/private/nsp-security/attachments/20110316/29c23e0c/attachment-0001.sig>
More information about the nsp-security
mailing list