-
March 13th, 2003 10:40 PM
#1
Anyone else seeing a rise in code red II?
It seems my blackice is going off constantly lately with ppl trying code red II attacks, also
TONS of HTTP attacks, and code red I. It just seems like a really sharp increase lately and I was wondering if you have noticed anything similar?
Remember -
The ark was built by amatures...
The Titanic was built by professionals.
-
March 13th, 2003 10:43 PM
#2
Ummm.. You sure it's Code Red II and not Code Red III that was announced to exist a few days ago? Check out Incidents and they'll show you what's rising. I suspect that's its more Code Red III.
-
March 13th, 2003 10:48 PM
#3
Well I havent updated blackice in a while and it may be misinterpreting it.
But this has been trickling for about a month, just lately (bout a week) its been worse... Ill look into it tho, thanks for that heads up
Remember -
The ark was built by amatures...
The Titanic was built by professionals.
-
March 14th, 2003 03:49 AM
#4
Junior Member
Check out Incidents and they'll show you what's rising. I suspect that's its more Code Red III.
I am concerned about the high number or port scans for bearshare. I have searched google and couldn't find any information on an exploit, but i can't help but to wonder. All p2p programs are backdoors into your system. I wonder if someone found a way to exploit privlages with bearshare.
-
March 14th, 2003 05:43 AM
#5
Member
I have noticed a major increase of scanning activity in the last two days. I believe they are attributed to the latest variant of the Code Red virus and possibly the Deloder worm. I could be wrong though.
ccKid
-
March 14th, 2003 06:37 AM
#6
It seems my blackice is going off constantly lately with ppl trying code red II attacks, also
TONS of HTTP attacks, and code red I. It just seems like a really sharp increase lately and I was wondering if you have noticed anything similar?
My firewall IDS has logged a lot more HTTP attacks over the last week. Mainly Code Red and IIS scans. This is almost definitely because of the lastest worms.
OpenBSD - The proactively secure operating system.
-
March 14th, 2003 08:17 PM
#7
I'v been gettinc connection attempts from all over on port 35072, can any one confirm this? I havn't been able to figure out wot the port does, I'v checked a bunch of different lists but nada has turned up.....oh well.... 
- Noia
With all the subtlety of an artillery barrage / Follow blindly, for the true path is sketchy at best. .: Bring OS X to x86!:.
Og ingen kan minnast dei linne drag i dronningas andlet den fagre dag Då landet her kvilte i heilag fred og alle hadde kjærleik å elske med.
-
March 14th, 2003 08:17 PM
#8
I'v been gettinc connection attempts from all over on port 35072, can any one confirm this? I havn't been able to figure out wot the port does, I'v checked a bunch of different lists but nada has turned up.....oh well....
- Noia
With all the subtlety of an artillery barrage / Follow blindly, for the true path is sketchy at best. .: Bring OS X to x86!:.
Og ingen kan minnast dei linne drag i dronningas andlet den fagre dag Då landet her kvilte i heilag fred og alle hadde kjærleik å elske med.
-
March 14th, 2003 08:40 PM
#9
From what I'm seeing, the target port for this version of Code Red is still port 80.
I'm not sure what's hitting you Noia.
Cheers:
-
March 14th, 2003 08:40 PM
#10
From what I'm seeing, the target port for this version of Code Red is still port 80.
I'm not sure what's hitting you Noia.
Cheers:
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
Forum Rules
|
|
Reply With Quote
Bookmarks