[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Krebs on Security booted off Akamai network after DDoS attack proves pricey

Subject: Krebs on Security booted off Akamai network after DDoS attack proves pricey
From: patrick at ianai.net (Patrick W. Gilmore)
Date: Sun, 25 Sep 2016 17:57:42 -0400
In-reply-to: <CAK_-TSZGbDaxF+j2B=NtA22kBVwCzi7Dwp_h=8fVXzBkHZUD-A@mail.gmail.com>
References: <[email protected]> <CAL9jLaY_7cHK0qqi19toe=vMzy6WzyeF_FDSzvP78eirrPh4fw@mail.gmail.com> <[email protected]> <CAL9jLabYEGXF8Ax3CrChDJfrpmXiTUA0MWQBqZkoZ=Px-6+1nw@mail.gmail.com> <[email protected]> <6CB7A90CA0C0D3CE.6E724E09-9FD0-4486-89BF-1A624A0F076A@mail.outlook.com> <[email protected]> <CAN414UcQK=xD3ESL8XBmquj9wLVPorrG9VPcLd6rbdvP9ysZsQ@mail.gmail.com> <[email protected]> <CAN414Uf-OK-B72AHVt8DtzsoH21QRqr=KLCYKA=LFCrejaKHjQ@mail.gmail.com> <[email protected]> <[email protected]> <CALoKGd2oN=mq_Gn75UrugUPDKfGPeD6cfq_AY+f-M1XUaCo46Q@mail.gmail.com> <[email protected]> <CAK_-TSZGbDaxF+j2B=NtA22kBVwCzi7Dwp_h=8fVXzBkHZUD-A@mail.gmail.com>

On Sep 25, 2016, at 5:50 PM, ryan landry <ryan.landry at gmail.com> wrote:
> On Sun, Sep 25, 2016 at 9:07 PM, Mark Andrews <marka at isc.org> wrote:

>> This is such a golden opportunity for each of you to find compromised
>> hosts on your network or your customer's network.  The number of
>> genuine lookups of the blog vs the number of botted machine would
>> make it almost certain that anything directed at the blog is a
>> compromised machine.  A phone call to the customer / further analysis
>> would reduce the false positive rate.
>> 
>> Mark
>> 
>> 
> i wish you luck with that. explaining to grandma that her samsung smart tv
> has been rooted and needs to be updated should be good fun.
> 
> for isp's it's a resourcing vs revenue problem. always has been. always
> will be. far more inclined to hold liable the folks that are churning out
> terribly dangerous cpe / IoT(shit). surely some regulatory body is looking
> into this.

Yeah, ?cause that was so successful in the past.

Remember University of Wisconsin vs. D-Link and their hard-coded NTP server address?

-- 
TTFN,
patrick

Follow-Ups:
- Krebs on Security booted off Akamai network after DDoS attack proves pricey
  - From: Jason_Livingood at comcast.com (Livingood, Jason)
- Krebs on Security booted off Akamai network after DDoS attack proves pricey
  - From: dwcarder at es.net (Dale W. Carder)
- Krebs on Security booted off Akamai network after DDoS attack proves pricey
  - From: rea+nanog at grid.kiae.ru (Eygene Ryabinkin)

References:
- Krebs on Security booted off Akamai network after DDoS attack proves pricey
  - From: johnl at iecc.com (John Levine)
- Krebs on Security booted off Akamai network after DDoS attack proves pricey
  - From: morrowc.lists at gmail.com (Christopher Morrow)
- Krebs on Security booted off Akamai network after DDoS attack proves pricey
  - From: niels=nanog at bakker.net (Niels Bakker)
- Krebs on Security booted off Akamai network after DDoS attack proves pricey
  - From: morrowc.lists at gmail.com (Christopher Morrow)
- Krebs on Security booted off Akamai network after DDoS attack proves pricey
  - From: brett at the-watsons.org (Brett Watson)
- Krebs on Security booted off Akamai network after DDoS attack proves pricey
  - From: justin at cloudflare.com (Justin Paine)
- Krebs on Security booted off Akamai network after DDoS attack proves pricey
  - From: jared at puck.nether.net (Jared Mauch)
- Krebs on Security booted off Akamai network after DDoS attack proves pricey
  - From: jayfar at jayfar.com (Jay Farrell)
- Krebs on Security booted off Akamai network after DDoS attack proves pricey
  - From: jra at baylink.com (Jay R. Ashworth)
- Krebs on Security booted off Akamai network after DDoS attack proves pricey
  - From: jayfar at jayfar.com (Jay Farrell)
- Krebs on Security booted off Akamai network after DDoS attack proves pricey
  - From: jtk at depaul.edu (John Kristoff)
- Krebs on Security booted off Akamai network after DDoS attack proves pricey
  - From: la at qrator.net (Alexander Lyamin)
- Krebs on Security booted off Akamai network after DDoS attack proves pricey
  - From: marka at isc.org (Mark Andrews)
- Krebs on Security booted off Akamai network after DDoS attack proves pricey
  - From: ryan.landry at gmail.com (ryan landry)

Prev by Date: IP addresses being attacked in Krebs DDoS?
Next by Date: One Year On: IPv4 Exhaust
Previous by thread: Krebs on Security booted off Akamai network after DDoS attack proves pricey
Next by thread: Krebs on Security booted off Akamai network after DDoS attack proves pricey
Index(es):
- Date
- Thread