Threat Level: green Handler on Duty: Brad Duncan

SANS ISC: A Lesson Learned from the Mailbox - SANS Internet Storm Center SANS ISC InfoSec Forums

Participate: Learn more about our honeypot network

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
A Lesson Learned from the Mailbox
From today's mailbox, William writes:

I walked up to my home computer only to find it acting on its own. I now understand it was the RealVnc 4.1.1 attack. Anyways, the computer is on a dialup connection, so they were working slowly. I unpluged the modem at once, leaving them cut off. They were in the process of downloading a virus from what i suspect to be a personal httpd. the address is [REDACTED], its full of hacker goodies you might like to look at. Either way, i feel really silly now, and pledge to keep up on my upgrades.

There are a few lessons from this report:
* The obvious ones are keep up on your patches and don't run unecessary services
* "I don't have anything on my computer that hackers would want," which I hear a lot from my extended family, is universallyl incorrect-- they want your computer.
* Bots don't know if you're on dial-up.

Thanks for the report William!
Kevin Liston

292 Posts
ISC Handler
Jul 22nd 2006

Sign Up for Free or Log In to start participating in the conversation!