Présentation : A small webhosting provider with servers in the Netherlands and Romania has been a hotbed of targeted attacks and advanced persistent threats APT since early 2015. Starting from May 2015 till today we counted over 100 serious APT incidents that originated from servers of this small provider. Pawn Storm used the servers for at least 80 high profile attacks against various governments in the US, Europe, Asia, and the Middle East. Formally the Virtual Private Server VPS hosting company is registered in Dubai, United Arab Emirates UAE . But from public postings on the Internet, it is apparent that the owner doesn t really care about laws in UAE. In fact, Pawn Storm and another APT group, attacked the government of UAE using servers of the VPS provider through highly targeted credential phishing. Other threat actors like DustySky also known as the Gaza hackers are also regularly using the VPS provider to host their Command and Control C C servers and to send spear phishing e-mails. Post from Trendlabs Security Intelligence Blog - by Trend Micro Looking Into a Cyber-Attack Facilitator in the Netherlands
Menu > Articles de la revue de presse : - l'ensemble [tous | francophone] - par mots clé [tous] - par site [tous] - le tagwall [voir] - Top bi-hebdo de la revue de presse [Voir]
Si vous voulez bloquer ce service sur vos fils RSS :
- avec iptables "iptables -A INPUT -s 126.96.36.199 --dport 80 -j DROP"
- avec ipfw et wipfw "ipfw add deny from 188.8.131.52 to any 80"
- Nous contacter par mail