I got access to some sinkhole logs for Conficker to do some processing. The logs are so big (this is one big sinkhole) that processing them took a few days. I only wanted to focus on the worm’s biggest growth period in early January, so I took a two week section and had a look [...]
Highlights of Arbor Networks’ Fourth Annual Worldwide Infrastructure Security Report
Presenters:
Tom Bienkowski, Director of Product Marketing, Arbor Networks
Danny McPherson, Vice President and Chief Security Officer, Arbor Networks
Description:
For the past four years Arbor Networks has conducted a survey of many of the world’s network operators. This survey covers topics such as: Most significant network based threats; common [...]
While I didn’t make it to the NANOG 45 meeting this week in sunny Santo Domingo (bum knee on the mend), I did listen to quite a few of the talks remotely, and pulled most of the presentations for a cursory look. I found one talk in particular, a lightning talk on Tuesday afternoon titled [...]
I’ve started to collect RFI attempts, logging the attacking IP and what the URL they’re trying to include is. I’ve started to work on this because I’m looking for certain botnets and tools used by them, and they’re not accessible otherwise. This seems like an under-studied area of botnet tracking. Most of the time I [...]
The ICANN May08 Fast Flux PDP Working Group has released a report on fast flux service networks, outlining the scope of the problem and ICANN’s possible role in addressing it. It leaves a few questions unanswered and also leaves ICANN’s role as unresolved. This is your big chance to get into the fray and comment [...]
