formmail - abuse contact for broadwing.net?

From: Soeren Ziehe (robintonat_private)
Date: Thu Jan 31 2002 - 04:08:00 PST

Next message: Michael Anuzis: "suspicious packets"

Previous message: Mike Lewinski: "Re: Re: DDoS to microsoft sites"
Next in thread: Jay D. Dyson: "Re: formmail - abuse contact for broadwing.net?"
Reply: Jay D. Dyson: "Re: formmail - abuse contact for broadwing.net?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hello,

we've been attacked (formmail exploit attempt) on 8 days in january from  
ppp-*.mclass.broadwing.net addresses.

It's the usual stuff, however, the sheer mass of accesses is noteworthy.
They sum up to 130640 accesses for said 8 days, resulting in < 35 MB of  
logs.

I tried to notify abuseat_private several times, but only got back  
an automated received message each time.
So does anyone know a /working/ security contact for Broadwing?

I'd really like to get the plug pulled on the (likely) script kiddie  
pulling this stunt.

Robinton

-- 
I've asked for kindness and ultimate truth. Still waiting for the answer.
-- 
Add a feature... Add a bug...

----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management 
and tracking system please see: http://aris.securityfocus.com

Next message: Michael Anuzis: "suspicious packets"
Previous message: Mike Lewinski: "Re: Re: DDoS to microsoft sites"
Next in thread: Jay D. Dyson: "Re: formmail - abuse contact for broadwing.net?"
Reply: Jay D. Dyson: "Re: formmail - abuse contact for broadwing.net?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Thu Jan 31 2002 - 09:05:25 PST