[nsp-sec] DDoS: Compromised web servers -- Round 3 [ACK 3464]
Beth Young
youngba at ren-isac.net
Wed Sep 26 13:52:04 EDT 2012
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 9/26/2012 9:36 AM, Nick Ianelli wrote:
> ----------- nsp-security Confidential --------
>
> Round three!
>
> I was able to identify 304 new hosts that they might be utilizing
> for their DDoS attacks. This is the first time I've seen these
> hosts, so I haven't notified anyone.
We will notify this organization
3464 | 198.180.132.134 | US | http://www3.aamu.edu/indx.php |
ASC-NET - Alabama Supercomputer Network
Regards,
Beth
- --
Beth Young, CISSP
soc at ren-isac.net
http://www.ren-isac.net
24x7 Watch Desk +1(317)278-6630
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.17 (MingW32)
iQEVAwUBUGNAxHOn520JM2MZAQLlhQf+Ifuvi6HXa8udFwg650pfqsf2n+bBKp2b
7U1JUk/dzkt5A4FMiGflNWMNp+kilxaOKGzDrOFs0UlB3WuOqgr+1xEIXA/D5gyd
Z7BOD9rsseWchsftbxh84Ma0WwCh6YfH+E2G/I1Ws3pCacYhWajG8kpxJMVA67B+
WqqIsV/YcHGxItrexKdfsh+O3Ddo3+fV6Q4lUkNqrK0+WvFMg/UZ4pjzGFj0LfYA
AaD+t/FINEQt59rYfVyUo3IReZ58X5lKmFZImqhooAeXkpYrS7aBIb+i1L32yMn2
nA3e1SIzosFgZlFI5fC/NMrMS1LORtWaR4NSZjpK6vTOaVqyhY/e/Q==
=K21Q
-----END PGP SIGNATURE-----
More information about the nsp-security
mailing list