[nsp-sec] Large mirai-variant - null routing and cleanup requested
Bruns, Daniel
DBruns at Cogentco.com
Wed Dec 6 06:58:29 EST 2017
Null routed at AS174.
-----Original Message-----
From: nsp-security [mailto:nsp-security-bounces at puck.nether.net] On Behalf Of RuthAnne Bevier
Sent: Tuesday, December 05, 2017 8:14 PM
To: nsp-security at puck.nether.net
Subject: Re: [nsp-sec] Large mirai-variant - null routing and cleanup requested
----------- nsp-security Confidential --------
On Tue, Dec 05, 2017 at 05:06:20PM -0800, Barry Greene wrote:
> > On Dec 5, 2017, at 4:52 PM, Benjamin, Mike <Mike.Benjamin at centurylink.com> wrote:
> >
> > Due to the swift nature this botnet was built and its large size we've decided to pre-emptively null route the C2 hosted at 95.211.123[.]69. This null route is active in AS3356, 209 and 3549.
>
> If you can, please Ack to the list when you Null route.
Null routed at AS31.
--RuthAnne
--
RuthAnne Bevier
Chief Information Security Officer
California Institute of Technology
626 395 2671
_______________________________________________
nsp-security mailing list
nsp-security at puck.nether.net
https://puck.nether.net/mailman/listinfo/nsp-security
Please do not Forward, CC, or BCC this E-mail outside of the nsp-security
community. Confidentiality is essential for effective Internet security counter-measures.
_______________________________________________
More information about the nsp-security
mailing list