Security Incidents mailing list archives

Re: SQL Slammer doing the rounds again?

From: Mike Tancsa <mike () sentex net>
Date: Wed, 12 Nov 2003 10:39:08 -0500

What is still kind of sad, is that if you look at the 70 day trend, thenumber of sources, is on a slow increase. Granted, its an almost flatslope, but you would think it would be headed the other way at the veryleast :-(


        ---Mike

At 11:52 PM 11/11/2003, Mike Barushok wrote:

Nope, not here.
Nothing looks ominous at:

http://isc.incidents.org/port_details.html?port=1434&repax=1&tarax=2&srcax=2&percent=N&days=10&Redraw=Submit+Query

either.

On 11 Nov 2003 sradnidge () hotmail com wrote:

>
>
> Hi all,
>

> We seem to be noticing a large increase on UDP 1434 across ourenterprise worldwide, first starting in Europe, then spreading to theAmericas and now looks to be heading our way in Asia. Anyone else seen aresurgence in this Slammer-like activity?

>
> Cheers
>
> Stuart
>
> ---------------------------------------------------------------------------
> Network with over 10,000 of the brightest minds in information security
> at the largest, most highly-anticipated industry event of the year.
> Don't miss RSA Conference 2004! Choose from over 200 class sessions and
> see demos from more than 250 industry vendors. If your job touches
> security, you need to be here. Learn more or register at
> http://www.securityfocus.com/sponsor/RSA_incidents_031023
> and use priority code SF4.

>----------------------------------------------------------------------------

>

--

Mike Barushok
Technical Services KeyCreations.com/KCISP.net



---------------------------------------------------------------------------
Network with over 10,000 of the brightest minds in information security
at the largest, most highly-anticipated industry event of the year.
Don't miss RSA Conference 2004! Choose from over 200 class sessions and
see demos from more than 250 industry vendors. If your job touches
security, you need to be here. Learn more or register at
http://www.securityfocus.com/sponsor/RSA_incidents_031023
and use priority code SF4.
----------------------------------------------------------------------------



---------------------------------------------------------------------------
Network with over 10,000 of the brightest minds in information security
at the largest, most highly-anticipated industry event of the year.
Don't miss RSA Conference 2004! Choose from over 200 class sessions and
see demos from more than 250 industry vendors. If your job touches
security, you need to be here. Learn more or register at
http://www.securityfocus.com/sponsor/RSA_incidents_031023
and use priority code SF4.
----------------------------------------------------------------------------

Current thread:

SQL Slammer doing the rounds again? sradnidge (Nov 11)
- Re: SQL Slammer doing the rounds again? Mike Barushok (Nov 12)
  - Re: SQL Slammer doing the rounds again? Mike Tancsa (Nov 12)
- RE: SQL Slammer doing the rounds again? Damian Lennon (Nov 13)
- <Possible follow-ups>
- RE: SQL Slammer doing the rounds again? Jim Harrison (ISA) (Nov 13)
  - RE: SQL Slammer doing the rounds again? Harlan Carvey (Nov 13)
- RE: SQL Slammer doing the rounds again? Jim Harrison (ISA) (Nov 13)
  - Re: [despammed] RE: SQL Slammer doing the rounds again? whiplash (Nov 14)
- RE: SQL Slammer doing the rounds again? Thompson, Jimi (Nov 14)
- RE: SQL Slammer doing the rounds again? David LeBlanc (Nov 14)