[unisog] step up in SSH scanning starting today?

Scott Fendley scottf at uark.edu
Mon May 12 23:38:54 GMT 2008


Personally, I think there is some targeting going on, but not sure about
how the attackers are choosing their targets yet.

Locally I have seen a limited increase, but am seeing more and more people
talking about it in the past week.

Scott

On Mon, 12 May 2008, Gaddis, Jeremy L. wrote:

> On Mon, May 12, 2008 at 4:40 PM, Tom Perrine <tperrine at scea.com> wrote:
> > Anyone else see a significant rise in SSH dictionary attacks, especially
> >  from .KR?
>
> [snip]
>
> >  What's the consensus?  Isolated or major ramp-up?
>
> http://isc.sans.org/diary.html?storyid=4408&rss
> _______________________________________________
> unisog mailing list
> unisog at lists.dshield.org
> https://lists.sans.org/mailman/listinfo/unisog
>


More information about the unisog mailing list