[nsp-sec] bitcoinbountyhunter extortion DDoS attack -> cars.com (74.199.98.141) AS3356, AS6461
Lawrence Baldwin
baldwinl at mynetwatchman.com
Tue Apr 21 17:44:15 EDT 2015
This attack is ongoing as of 3:35 Central and is ongoing at the
moment..related to BCBH extortion activity.
Victim is already in contact with Nocs from Level 3 and Abovenet, but
if anyone here can help ensure that DDoS mitigation teams are engaged
I'd appreciate it. I can be reached via mobile: 404-933-9511
Attack is UDP..I don't have payload, but from what I understand it's
NTP/DNS amplification activity.
Also, anyone working cases involving this crew I'm looking to do an LE
referral on it.
--
Lawrence Baldwin
Chief Forensics Officer
myNetWatchman.com
Atlanta, GA
+1.678.624.0924
More information about the nsp-security
mailing list