Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Security Incidents: Re: Code Red, anyone?

Re: Code Red, anyone?

From: Pat Wilson <paw_at_noh.ucsd.edu>
Date: Wed, 1 Aug 2001 07:46:27 -0700 (PDT)

Joseph Nicholas Yarbrough <nyarbrough_at_lurhq.com> writes:

        On Tuesday 31 July 2001 21:31, Alfred Huger wrote:
> Anyone seeing Code Red activity yet?

        When I came in tonight at 1 am I was told that there was no code red activity
        seen all night. Now (5:14EDT) I'm seeing dozens of connects per minute.

Just to confirm - I've spotted an infestation here (only one so
far; we blocked access to machines that had been infested on the
19th and hadn't heard had been cleaned up). This one even had
the Chinese Web site...

It's out there.

Pat Wilson
Network Security Manager
UCSD ACS/Network Operations
paw_at_ucsd.edu
6F3A AE75 F931 3A19 D207 19F3 DB9B 29DC 2C3F E015

----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management
and tracking system please see: http://aris.securityfocus.com
Received on Aug 01 2001

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
edgeos