[nsp-sec] Two Flashback C&Cs: HE, NTT, Internap, Limelight
Chris Morrow
morrowc at ops-netman.net
Thu Apr 19 11:12:51 EDT 2012
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 04/19/2012 11:10 AM, Bill Woodcock wrote:
> ----------- nsp-security Confidential --------
>
>
>>>> rfffnahfiywyd.net vxvhwcixcxqxd.net AS | IP | AS Name
>>>> 6939 | 74.207.249.7 | HURRICANE - Hurricane Electric,
>>>> Inc.
>
>> I've been told this may be a security organization in Canada,
>> Unveillance (e.g., Karim Hijazi, Matt Thompson).
>
>
> Apple is distinguishing between sinkholes and C&C, and the two IPs
> they handed over were the things they most wanted taken down. I
> can't speak further than that.
>
> I think there's a slippery slope when one starts distinguishing
> between "good" and "bad" C&C and letting some continue.
and unveillance has some crappy history :( If HE sees fit they ought
to take action. (it seems to me)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12-git43c7d1c (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
iD8DBQFPkCtyr6swUqhDs2sRAlrEAJ9Kyq5RT+Kv/XXtaL9hlQQudLhCEACfdauw
UL2vabXxoJCxFamN+6T936s=
=MuLm
-----END PGP SIGNATURE-----
More information about the nsp-security
mailing list