Scanning the World

Threat level definition

Scanning the World
Kevin Poulsen, SecurityFocus 2000-07-07

A mysterious California company is sweeping the net for live hosts, and touching off alarms around the world.

Expand all | Post comment

Quova 2000-07-07
Anonymous (1 replies)

Quova 2000-07-07
Anonymous (3 replies)

Quova 2000-07-10
Anonymous

Quova 2000-07-10
Anonymous

Quova 2000-07-10
Anonymous

Anyone care to share the source IP? 2000-07-07
Anonymous (3 replies)

Anyone care to share the source IP? 2000-07-07
Anonymous (1 replies)

Anyone care to share the source IP? 2000-07-12
Anonymous

Anyone care to share the source IP? 2000-07-07
Anonymous (1 replies)

They don't have the pipe to do it? 2000-07-11
Anonymous

Anyone care to share the source IP? 2000-07-08
Anonymous

IP address range? 2000-07-07
Anonymous (3 replies)

IP address range? 2000-07-07
Anonymous (1 replies)

IP address range? 2000-07-07
Anonymous (1 replies)

IP address range? 2000-07-07
Anonymous (1 replies)

IP address range? 2000-07-10
Anonymous

IP address range? 2000-07-07
Anonymous (1 replies)

re: IP address range? 2000-07-07
Anonymous

IP address range? 2000-07-07
Anonymous

Why not .gov ?!? 2000-07-07
Anonymous (6 replies)

Why not .gov ?!? 2000-07-07
Anonymous (2 replies)

Why not .gov ?!? 2000-07-07
Anonymous

Why not .gov ?!? 2000-07-16
Anonymous

Why not .gov ?!? 2000-07-07
Anonymous

Why not .gov ?!? 2000-07-07
Anonymous (1 replies)

Why not .gov ?!? 2000-07-07
Anonymous

Why not .gov ?!? 2000-07-07
Anonymous

Why not .gov ?!? 2000-07-07
Anonymous

Why not .gov ?!? 2000-07-07
Anonymous (1 replies)

Why not .gov ?!? 2000-07-07
Anonymous

IP 2000-07-07
Anonymous (1 replies)

IP 2000-07-07
Anonymous (1 replies)

scanned by 64.41.164.56 2000-07-10
Anonymous

Quova 2000-07-07
Anonymous

Snip....

"Obviously, I want to decrease that number," says Muniz. To that end, the company is working to refine its technique, so as to fly stealthily beneath the radar of firewalls and intrusion detection systems. "It's a goal we have," says Muniz. "Someday I'd like to get the system to the point where we don't set off anybody's alarms."

..end

Very scary when one considers what he is saying in that statement, they want to "fly stealthily beneath the radar". How nice of them to consider people, not by issuing statements or asking permission before scanning a network, the above statement simply says "we want to do it without any one knowing and we will do it whether they like it or not".

Personally, I would be advising any customer to implement access control measures to deny access to their systems by Qouva's IP ranges. I would also suggest to Quova that they publish a list of the source IP's used for the scans etc.

Scary.

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/articles/56/2384#2384

Anyone know that company's website? 2000-07-07
Anonymous

Quova Website 2000-07-07
Anonymous (1 replies)

Quova Website 2000-07-07
Anonymous (1 replies)

RE: Stealthy scans (was Quova Website) 2000-07-08
Anonymous

Interesting... 2000-07-07
Anonymous

They ARE scanning .GOV 2000-07-07
Anonymous (2 replies)

They ARE scanning .GOV 2000-07-07
Anonymous

Re: scanning activity from within Exodus net blocks 2000-07-07
Anonymous (1 replies)

Re: scanning activity from within Exodus net blocks 2000-07-07
Anonymous

If Exodus is allowing/supporting this, why not block them as well? 2000-07-07
Anonymous (2 replies)

If Exodus is allowing/supporting this, why not block them as well? 2000-07-08
Anonymous

If Exodus is allowing/supporting this, why not block them as well? 2000-07-08
Anonymous (1 replies)

If Exodus is allowing/supporting this, why not block them as well? 2000-07-16
Anonymous

Acceptable network scanning? 2000-07-07
Anonymous (3 replies)

Acceptable network scanning? 2000-07-07
Anonymous

Acceptable network scanning? 2000-07-08
Anonymous

Acceptable network scanning? 2000-07-15
Anonymous

Yawn 2000-07-07
Anonymous

What can they really learn? 2000-07-07
Anonymous (4 replies)

What can they really learn? 2000-07-08
Anonymous (1 replies)

What can they really learn? 2000-07-09
Anonymous

What can they really learn? 2000-07-08
Anonymous

They can learn a LOT if they want to probe 2000-07-08
Anonymous (3 replies)

They can learn a LOT if they want to probe 2000-07-09
Anonymous

They can learn a LOT if they want to probe 2000-07-10
Anonymous

Test your security 2000-07-11
Anonymous

What can they really learn? 2000-07-08
Anonymous

Random information... 2000-07-07
Anonymous

who cares?! 2000-07-07
Anonymous

Permission for everything? :) 2000-07-07
Anonymous

It won't do them any good anyway 2000-07-08
Anonymous (1 replies)

It won't do them any good anyway 2000-07-09
Anonymous

Simple 2000-07-08
Anonymous

QUOVA 2000-07-08
Anonymous (1 replies)

Ignorance is bliss, no? 2000-07-10
Anonymous (1 replies)

Ignorance is bliss, no? 2000-07-10
Anonymous

Scanned In Seattle 2000-07-08
Anonymous (1 replies)

What possible explanation... 2000-07-10
Anonymous (1 replies)

What possible explanation... 2000-07-13
Anonymous

here is what they can find out 2000-07-09
Anonymous (2 replies)

Another rmovie buff I see 2000-07-10
Anonymous

here is what they can find out 2000-07-11
Anonymous

The Scanning is nothing wrong 2000-07-09
Anonymous

There's nothing like free publicity 2000-07-09
Anonymous

Slashdot Reported Range.....BS? 2000-07-09
Anonymous

Quote the range of IPs 2000-07-09
Anonymous (1 replies)

Stop it! 2000-07-10
Anonymous (1 replies)

Stop it! 2000-07-10
Anonymous

With stealth like this, who needs cannons? 2000-07-10
Anonymous

DNS scans as well? 2000-07-10
Anonymous

Why Does It Matter..... 2000-07-10
Anonymous

who cares ? 2000-07-10
Anonymous (1 replies)

who cares ? 2000-07-11
Anonymous

This is the same as a person knocking at your front door, Nothing illegal here. 2000-07-11
Jeff Deitz <jeffd (at) vsp (dot) com [email concealed]> (3 replies)

This is the same as a person knocking at your front door, Nothing illegal here. 2000-07-11
Anonymous

>knocking at your front door 2000-07-11
Anonymous (1 replies)

>knocking at your front door 2000-07-11
Anonymous

This is the same as a person knocking at your front door, Nothing illegal here. 2000-07-11
Anonymous (2 replies)

Jiggling the handle 2000-07-12
Anonymous

This is the same as a person knocking at your front door, Nothing illegal here. 2000-07-13
Anonymous

time domain reflectometer 2000-07-11
Anonymous (2 replies)

time domain reflectometer 2000-07-11
Anonymous

time domain reflectometer 2000-07-11
Anonymous (1 replies)

time domain reflectometer 2000-07-13
Anonymous

Quova/Exodus.net/Conducent/Timesink 2000-07-12
Anonymous

The nefarious plot... 2000-07-12
Anonymous

It seemed harmless at first 2000-07-13
Anonymous

Exodus Port Probes/DoD too??? 2000-07-15
Anonymous

Flooding the Internet... 2000-07-17
Anonymous

Privacy Statement
Copyright 2009, SecurityFocus