[nsp-sec] ACK List of vulnerable F5 devices being targeted
Scott A. McIntyre
scott at howyagoin.net
Wed Jul 18 20:26:25 EDT 2012
Hi Beth,
> Once the device is successfully exploited, it might try to use HTTP GET
> to download additional files from IP address 188.240.236.11. It may
> start scanning for other vulnerable devices on port 22. The miscreants
> might also be using a machine at 109.237.208.126 to log into compromised
> devices.
Thanks for this - ACK on the AS1221 system listed. We're on it!
Cheers,
Scott A. McIntyre
Telstra
More information about the nsp-security
mailing list