|
Mild injection attack attempt
Last evening Rantburg.com under went what an only be called a rather inept DDOS and SQL injection/spamming attack:The statistics: The spamming attacks came from 21 unique IPs, from 11 unique netblocks. Most of the IPs were from European and Dutch netblocks. None of the messages were from residential netblocks, as far as can be detected.  The main concern is SQL injection attacks, and those really only affect the backup server. Fred's coding catches it and stuffs the data somewhere in a DB table until it can be examined. Dunno if it's by design or not, but it worked well that last time we had an attack. It appears the backup server was not affected, since the normal database repopulation took place without any apparent problem. The most interesting aspect of the attack was from this: org-name: CIA TRIAD SECURITY LLC org-type: OTHER address: 2701 Centerville Road address: New Castle County address: Wilmington address: Delaware 19808 Now, we all know the government would never do something as unseemly as participating in such an attack. If they wanted rantburg.com shut down, they'd just create a ticket, and the server is gone. This is an indication of at least part of the participating servers. Affected netblocks: 45.154.98.0/24 185.56.83.0/24 192.42.116.0/22 185.243.218.0/24 23.128.248.0/24 23.152.225.2/24 23.154.177.0/24 146.70.146.0/24 23.184.48.0/24 88.208.192.0/18 146.70.146.0/24 Posted by: badanov 2023-02-21 |
| http://www.rantburg.com/poparticle.php?ID=659178 |