[ale] news: sobig.f -- anything yet??
Jonathan Rickman
jonathan at xcorps.net
Fri Aug 22 16:18:20 EDT 2003
On Friday 22 August 2003 16:15, J.M. Taylor wrote:
> I so don't believe that something this sophisticated just...fizzled
> quietly away. But...I certainly hope it did! I'm a bit puzzled by only
> 20 machines that were supposed to act as servers...from the major
> aggressiveness of this thing, you'd think that the best that could happen
> with zillions of infected PCs trying to hit 20 machines at once would be
> just a kind of lame ddos.
The scary part is who some of the machines belong to.
Example...first on the list.
jonathan at abacus:~$ whois 12.158.102.205
AT&T WorldNet Services ATT (NET-12-0-0-0-1)
12.0.0.0 - 12.255.255.255
WEST FLORIDA ELECTRIC COOPERATIVE WEST-FLO55-102 (NET-12-158-102-0-1)
12.158.102.0 - 12.158.102.255
# ARIN WHOIS database, last updated 2003-08-21 19:15
# Enter ? for additional hints on searching ARIN's WHOIS database.
jonathan at abacus:~$
--
Jonathan Rickman
X Corps Security
http://www.xcorps.net
_______________________________________________
Ale mailing list
Ale at ale.org
http://www.ale.org/mailman/listinfo/ale
More information about the Ale
mailing list