|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: baudendist
primary.netDate: Thu Aug 02 2001 - 13:46:32 CDT
Yea... We were watching this yesterday... It looks like the packets are
coming from WIN2K IPSec enabled web servers... It goes back to the 19th...
VPN??? WIN2K interaction with the worm? Incidental? Who knows????
We were gonna call it the SKI portion of the Red Code worm...
We will release more info on this as we look into it further.
Scott Gordon & Matt Baudendistel
reply to: baudendistprimary.net
----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management
and tracking system please see: http://aris.securityfocus.com
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]