Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Pen-Test
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

cyveillance attack on our servers

from [Campbell Murray] Network Security [Permanent Link]
Subject: cyveillance attack on our servers
Date: Wed, 11 Oct 2006 09:55:46 +0100 
Group, your thoughts and experience please.

We have recently been subject to a series of scans originating from
the IP address 65.222.176.125.  A lookup on Arin reveals the owners as
cyveillance and further investigation via Google indicates that we are
not alone as victims of hacking attacks from this organisation:
please read http://cyveillance.linuxgod.net/

Logs that we have collected from our webservers show not just site
crawling [which we have no problem with] but attempts to uncover
hidden directories, cross site scripting and SQL injection against
known and possible page targets on our main AND satellite websites.
The pattern of the scans is similar to that of the Syhunt assessment
tool and we are assuming either this or a similar tool has been used
on our URLs.

Has anybody else experienced similar problems with this organisation?

Kind Regards,


Campbell

------------------------------------------------------------------------
This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.
http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW
------------------------------------------------------------------------

[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • cyveillance attack on our servers, Campbell Murray <=
Previous by Date:  RE: Using viruses in pen-test, lists
Next by Date:  Re: Inprotect - Installation Issues?, A User
Previous by Thread:  Social Engineering Data set, xun dong
Next by Thread:  Web Vulnerability Scanner, Tareq AlKhatib
Indexes:  [Date] [Thread] [Top] [All Lists]