NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Incidents> 2001-07

From: Arthur Donkers (arthurreseau.nl)
Date: Thu Jul 19 2001 - 14:21:31 CDT

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi All,

Only half an hour ago we caught some Code Red worms in our W2K honeypot.
We are analysing the tcpdump trace of the actual breakin, but in the
meantime, anyone interested in these traces (people not supporting full
disclosure could close their eyes or speed read with the 'd' button ...) ?

Arthur Donkers

-- /* Disclaimer : you hire my skills, not my opinions, those are mine ! */ /* email : arthur

reseau.nl Security 'Me ? I'm not me ! I'm just a */ /* phone : (+31) 50 549 2701 is not a computer simulation of me' */ /* URL http://www.reseau.nl dirty word Red Dwarf, First Episode */

----------------------------------------------------------------------------

This list is provided by the SecurityFocus ARIS analyzer service. For more information on this free incident handling, management and tracking system please see:

http://aris.securityfocus.com

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]