The 26.07.2024 was a normal day, not much happened except a small DDOS attack on the New Zealand.
I was as usual on Netscout Horizon waiting for something to happen. I thought today it would be France because of the Olympics and their support of Ukraine but I was wrong.
It has been only 30 Minutes when almost no other attacks have been seen. It could be one of the ATP bears trying to show his muscles (?). Unfortunately for him team blue is after the Stock-Exchange attack in August 2020 and the changes they made later now much better prepared and it even had some help from team „gray“ 🙂
But it was a „nice try“ attack with a lot of up to 100mb to 1gbs connections in a coordinated way. With almost none other DDOS attacks at the same time. Some group Umbrella or the Skynet group had started with counter attacks after some time. The real umbrella not CISCOs umbrella! 10 minutes later everything was over.
It was a wide attack and a hard response. Only minutes but I’m sure some admins on both sides will have a very busy day.
DDOS attack on New Zealand energy sector
Andere Beiträge
- Bureaucracy: A Hacker’s Delight and an IT Security NightmareBureaucracy: A Hacker’s Delight and an IT Security Nightmare. Ah, bureaucracy! A term that evokes as much enthusiasm as a dentist appointment or cleaning out the attic. While many of us slog through paperwork, there’s a special group that finds it delightful: hackers. Believe me, the adventure that IT security in the jungle of bureaucracy entails could easily be a bestseller! Imagine this: A hacker sits comfortably in his dark, monitor-filled lair. He takes a sip of his favorite coffee and grins widely as he scrolls through endless documents and forms. Bureaucratic errors are like Easter eggs just waiting to be found. While most of us get gray hairs from a marathon of forms, hackers see it as a goldmine. That is the reality not a film.
- 26.07.2024 DDOS attack on New ZealandSome admin in NZ had a very busy day 🙂 DDPS with 100mb to 1gbs connections in a coordinated way. Umbrella or the Skynet-Shield group had started with counter attacks after 20 minutes with up to 10gbs. 10 minutes later everything was over.
- Quick FIX for the Microsoft CrowdStrike bugIt is just a quick fix for the CrowdStrike bug when your system is currently facing the blue screen of death. Just reboot into the safe mode or WRE go to: C:\Windows\System32\drivers\Crowdstrike Search for the File: C-000000291*.sys Delete this file Reboot
- CISCO Firepower FMC 100MB upload bugCISCO Firepower FMC 100MB upload bug. Somehow CISCO always manages to surprise me with unnecessary bugs that shouldn’t be there. Especially if these bugs are old and could be easily fixed by CISCO.
- IP-blocklist specifically for NAS securityIP-blocklist specifically for NAS security. I created a nice little feed with automatically updating IP addresses that specialize in attacking NAS devices
