Incidents Mode:
(Page 9 of 170)  < Prev  4 5 6 7 8 9 10 11 12 13 14  Next >
Announcing a global view on Internet events: ATLAS 2007-02-06
Jose Nazario (jose monkey org)
Yesterday, Arbor Networks launched the public portal for our ATLAS
project, a product of my team (ASERT) and something near and dear to my
heart. As an incident and threat analyst, I have cobbled together tools
and utilities for discovering what's afoot on the Internet in near
real-time for year

[ more ]  [ reply ]
Tracking down random ICMP 2007-01-22
Craig Chamberlain (craig chamberlain Q1Labs com) (3 replies)

Seem to be seeing more random bursts of ICMP traffic - sometimes
unidirectional - with remote destinations that are mostly inexplicable.
Wondering if it's a covert control channel of some sort - if so I can
see why they chose ICMP - often allowed through firewalls and it is
seems to be hard to dete

[ more ]  [ reply ]
Re: Tracking down random ICMP 2007-02-02
Frank Knobbe (frank knobbe us)
Re: Tracking down random ICMP 2007-01-23
Valdis Kletnieks vt edu (2 replies)
Re: Tracking down random ICMP 2007-01-25
Javier Fernández-Sanguino (jfernandez germinus com) (1 replies)
Re: Tracking down random ICMP 2007-01-25
Valdis Kletnieks vt edu (2 replies)
DoS attacks using ports 31800, 31900 ? 2007-02-02
David Gillett (gillettdavid fhda edu) (1 replies)
Re: DoS attacks using ports 31800, 31900 ? 2007-02-06
Deapesh Misra (deapesh gmail com)
Attempted FTP intrusion 2007-01-31
David Gillett (gillettdavid fhda edu) (1 replies)
Re: Attempted FTP intrusion 2007-01-31
Tillmann Werner (tillmann werner gmx de)
Re: Tracking down random ICMP 2007-01-23
Jose Nazario (jose monkey org) (1 replies)
Re: Tracking down random ICMP 2007-01-24
Bojan Zdrnja (bojan zdrnja gmail com) (1 replies)
Re: Tracking down random ICMP 2007-02-09
Jean-Baptiste Marchand (jbm lists gmail com)
Re: Tracking down random ICMP 2007-01-23
Kyle Maxwell (krmaxwell gmail com)
UK computer crime contact? 2007-01-19
Z (commander_uk yahoo com) (4 replies)
Hi all,
Does anyone have any phone numbers or other contact
info for reporting computer crimes in the UK? The UK
police website says just to call your local police
station, but I'd prefer to speak with someone who
understands what I mean by DDoS attacks and bot nets
rather than forwarding me to the

[ more ]  [ reply ]
RE: UK computer crime contact? 2007-01-22
Johann van Duyn (johann vanduyn co uk)
Re: UK computer crime contact? 2007-01-20
Travis Haymore (thaymore gmail com)
Re: UK computer crime contact? 2007-01-20
Graeme Fowler (G E Fowler lboro ac uk)
RE: UK computer crime contact? 2007-01-20
Butterworth, Jim (jim butterworth guidancesoftware com)
Bruteforce attack against smtp-auth 2007-01-09
Philipp Frik (Philipp Frik physik lmu de) (1 replies)
Hi,

this day i've seen that somebody from China had tried to get an smtp
login om a server. This was the first time i've seen something like
this, bruteforce against ssh i've seen often but never against the
mailserver. Now i'm interresed in if there a more people out there with
similar experience

[ more ]  [ reply ]
Re: Bruteforce attack against smtp-auth 2007-01-10
mgotts 2roads com (1 replies)
Re: Bruteforce attack against smtp-auth 2007-01-12
Peter Morgan (peterjmorgan gmail com)
MS06-044 XSS exploits in the wild 2006-12-22
Moyer, Shawn - St. Louis, MO (shawn moyer stl usda gov)
We have seen a number of XSS exploit attempts with MS06-044 payloads in
the past few days. Several are using the site below to load payloads.
The attackers appear to be compromising small ecommerce sites via SQL
injection vulns and then loading the XSS from there.

The code is hosted on the site bel

[ more ]  [ reply ]
Spam and SYN Flood? 2006-12-18
Curt LeCaptain (lecaptainc infinitytechnology com) (1 replies)
I'm new to the list, so if I'm in the wrong place e-mailing this
message, I apologize. For about the last 5-7 days, I've been noticing a
rather large amount of spam, all messages being sent to non-existant
addresses on our mail server, along with the majority of them showing up
as 0-byte e-mails wi

[ more ]  [ reply ]
Re: Spam and SYN Flood? 2006-12-21
Peter Kosinar (goober ksp sk)
udp port 17304 2006-12-15
auto263187 hushmail com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Anybody else seeing traffic to this port? I've had 10k nodes so
far today get blocked at my firewall trying to access this port,
i'm guessing it's a C&C net trying to do something but not positive
yet.

UDP payload(full packet below) is always 40 bytes

[ more ]  [ reply ]
Re: http://thebesthack.altervista.org/input.txt 2006-12-14
santa northpole com
************************************************************************
*************************************************

* Name = PHP Upload Center v2.0 ;

* Class = Remote/Local File Inclusion ;

* Download = http://skrypty.webpc.pl/pobierz.php?id=58 ;

* Found by = GregSta

[ more ]  [ reply ]
(Page 9 of 170)  < Prev  4 5 6 7 8 9 10 11 12 13 14  Next >


 

Privacy Statement
Copyright 2010, SecurityFocus