OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
Cisco vulnerability scanning increase

morriswurmyahoo.com
Date: Fri Sep 02 2005 - 11:17:00 CDT


We recently picked up a spike in TCP 80 scanning against one of our netblocks.

Looking at the payload, it appears to be a Cisco vulnerability scanner.

 /level/16/exec/-///pwd

Numerous random source IP's across various netblocks, makes it appear to be bot related potentially. Anyone else seeing this type of activity?