Argomento: SYN Attacks
I recently received a full blown SYN attack that kept on for 2 weeks, i dont know if othershave experienced anything related, the sources where spoofed however came from:- OHV SAS- Suarnet.br.comI spoke with multiple IT teams from Brazil and the Netherlands and it we deducted thatthis is a so called middle-men attack, they use spoofed packets that send a SYN request using a spoofed source packet, this source was the target. I had to reinstate a mitigationlayer with another ipv4 (lease).If anybody is experiencing this right now, let me know I can help you with a solution (if Dynu's rules allow me i hope).I attached the attack map in the attachment of this thread what we received, was nasty.Greets B.
Rispondi con citazione | Segnalare
Autore | Argomento: SYN Attacks |
---|---|
blackbarret Iscritto: 26/04/2017 |
SYN Attacks martedì 23 febbraio 2021 07:18
I recently received a full blown SYN attack that kept on for 2 weeks, i dont know if othershave experienced anything related, the sources where spoofed however came from:- OHV SAS- Suarnet.br.comI spoke with multiple IT teams from Brazil and the Netherlands and it we deducted thatthis is a so called middle-men attack, they use spoofed packets that send a SYN request using a spoofed source packet, this source was the target. I had to reinstate a mitigationlayer with another ipv4 (lease).If anybody is experiencing this right now, let me know I can help you with a solution (if Dynu's rules allow me i hope).I attached the attack map in the attachment of this thread what we received, was nasty.Greets B.
|
Al momento è sabato 21 dicembre 2024 23:23 US Mountain Standard Time
sabato 21 dicembre 2024 23:23