Kevin Beaumont on Nostr: While monitoring a DDoS botnet today, I pointed out to a victim org if they pointed ...
While monitoring a DDoS botnet today, I pointed out to a victim org if they pointed their DNS record at the attackers C2 server, it would cause the attacker pain. They were attacking an unimportant subdomain.
They did, and it caused all the DDoS nodes to DDoS the c2 server (which is still offline).
{
"id":"adec845caf1b231efa698df81ae818182269bb8f09a8b27a5275644cc39f013d",
"pubkey":"f6870afcde4480ec8508f50304859e14a51309ff24ab3f0f862c52bdc4af8747",
"created_at":1703193144,
"kind":1,
"tags": [
[
"proxy",
"https://cyberplace.social/users/GossiTheDog/statuses/111620465926991818",
"activitypub"
]
],
"content":"While monitoring a DDoS botnet today, I pointed out to a victim org if they pointed their DNS record at the attackers C2 server, it would cause the attacker pain. They were attacking an unimportant subdomain. \n\nThey did, and it caused all the DDoS nodes to DDoS the c2 server (which is still offline).\n\nhttps://cyberplace.social/system/media_attachments/files/111/620/465/665/083/765/original/9ae597c3d5e7b56a.mp4",
"sig":"be5ba34c0db2266be19e8d2ed1f3b8a56a25d8e8fc0d7a71f013b4dd04193f319463b3e5db69583385f1aa37cd855d914c9db93b032dc3de1289d21b87fd367a"
}
