Update on DDOS

Tuesday, July 14, 2009

According to Nguyen Minh Duc's blog post, the master server that controlled the 8 command and control servers for the botnet responsible for the July 4th DDOS attacks has been identified. The master server seems to reside in the UK and the source IP has been handed over to USCERT and KrCERT.

According to the post and my memory this is the first time a master server has ever been pinpointed. It will be interesting to see the next actions taken by the US and South Korean governments to bring the person(s) responsible to justice. Furthermore I would like to reiterate that every day the speculation that North Korea was involved is diminishing this was just an initial gut feeling of researchers and media not fact. Lastly, it was determined that the final count of bots was 166,908 zombies not the initial 20,000 or 50,000 suggested by South Korea or Symantec respectively.

Till next time,
Jorge Orchilles


No response to “Update on DDOS”
Post a Comment | Post Comments (Atom)