One of the botnets we see as the source frequent attacks against us very often... - Infosec - kbin.social

tdp_org, 7 months ago

One of the botnets we see as the source frequent attacks against us very often has IPs which Shodan et al list as running Squid (often v4.14). I don't know for sure if this is related but it could be:
https://www.theregister.com/2023/10/13/squid_proxy_bugs_remain_unfixed/

#Squid #Proxy #InfoSec #DDOS #BotNet

reply

report

activity

copy /kbin url

copy original url

open original url

Loading...

+ AAKL

Image

Image alternative text

gsuberland, 7 months ago

@tdp_org are the botnets ever actually effective at impacting service to users in a meaningful way? I always presumed that an org the size of the BBC has more than enough frontend anycast, blackholing, and dynamic scaling stuff going on to make the attacks rather like pissing into the wind, if you'll pardon the expression.

reply

report

activity

copy /kbin url

copy original url

open original url

Loading...

tdp_org, 7 months ago

@gsuberland Haha, we usually do pretty well - as you say, we have many layers of defence. Some are more effective than others but we do our best to stay ahead of or at least up with the curve.
The size of the attacks has grown massively in the last year or so, that's been a real standout observation.
I can't really say much more than that in public though, sorry🙌🏻

reply

report

activity

copy /kbin url

copy original url

open original url

Loading...

Federation

Status:

Instances:

/m/infosec

Microblog (3157)

Thread

tdp_org

@tdp_org@mastodon.social

Added: 7 months ago
Online: -
Boosts: 1

Magazine

Infosec

@infosec@kbin.social

This magazine is dedicated to discussions on cybersecurity, network security, and information security.

Whether you are an IT professional, a cybersecurity enthusiast, or simply concerned about online privacy and security, this is the place for you.

Here you can share your knowledge, ask for advice, and discuss the latest news and trends in the world of cybersecurity. From encryption and malware to risk management and digital forensics, this category covers a wide range of topics related to information security.

Join the conversation and let's work together to keep our online world safe and secure.

Created: 1 year ago
Owner: ernest
Subscribers: 3669
Online: -

Moderators

ernest

Active people

Related posts

I’m very close to finishing my personal laptop which is using @QubesOS on my @purism Librem 14. I just have to rotate passwords and setup my @bitwarden and @protonprivacy email and password manager. I even have @yubico for most of my TOTP. Need to sync Monero, login to...

Show more

5 days ago to random

Pegasus: Putin-kritische Journalisten in der EU mit Spyware angegriffen...

Show more

3 days ago to Cybersecurity

Researchers crack 11-year-old password, recover $3 million in bitcoin https://arstechnica.com/?p=2027419&utm_source=dlvr.it&utm_medium=mastodon #cybersecurity #infosec

Show more

6 days ago to Cybersecurity

Security firm watchTowr has published its own analysis of CVE-2024-4577, a PHP-CGI vulnerability impacting Windows systems: https://labs.watchtowr.com/no-way-php-strikes-again-cve-2024-4577/...

Show more

4 days ago to random

Related threads

University of Michigan employee, student data stolen in cyberattack

Show more

7 months ago to sysadmin

David Attenborough narrates a cyber attack

Show more

7 months ago to InfoSecMemes

Pretender: Your MitM sidekick for relaying attacks

Show more

1 year ago to toolsec

Support Us