[Tier1 ISP]: Vulnerable to a new DDoS amplification attack
Edward Dore
edward.dore at freethought-internet.co.uk
Thu Dec 22 09:25:31 UTC 2016
Depending on which bit of PSINET Jean is talking about, that could be Cogent.
Edward Dore
Freethought Internet
> On 22 Dec 2016, at 06:51, Alexander Lyamin <la at qrator.net> wrote:
>
> I am just trying to grasp what is similarity between networks on the list
> and why it doesn't include, say NTT or Cogent.
>
>
>
> On Wed, Dec 21, 2016 at 7:05 PM, Jean | ddostest.me via NANOG <
> nanog at nanog.org> wrote:
>
>> Hello all, I'm a first time poster here and hope to follow all rules.
>>
>> I found a new way to amplify traffic that would generate really high
>> volume of traffic.+10Tbps
>>
>> ** There is no need for spoofing ** so any device in the world could
>> initiate a really big attack or be part of an attack.
>>
>> We talk about an amplification factor x100+. This mean that a single
>> computer with 1 Gbps outgoing bandwidth would generate a 100 Gbps DDoS.
>> Imagine what a botnet could do?
>>
>> The list of affected business is huge and I would like to privately
>> disclose the details to the Tier1 ISP as they are highly vulnerable.
>>
>> XO Comm
>> PSINET
>> Level 3
>> Qwest
>> Windstream Comm
>> Eearthlink
>> MCI Comm/Verizon Buss
>> Comcast Cable Comm
>> AT&T
>> Sprint
>>
>> I know it's Christmas time and there is no rush in disclosing this but, it
>> could be a nice opportunity to meditate and shed some lights on this new
>> DDoS threat. We could start the real work in January.
>>
>>
>> If you are curious and you operate/manage one of the network mentioned
>> above, please write to me at tornaddos at ddostest.me from your job email to
>> confirm the identity. I will then forward you the DDoS details.
>>
>> Best regards
>>
>> Jean St-Laurent
>> ddostest.me
>> 365 boul. Sir-Wilfrid-Laurier #202
>> Beloeil, QC J3G 4T2
>>
>
>
>
> --
>
> Alexander Lyamin
>
> CEO | Qrator <http://qrator.net/>* Labs*
>
> office: 8-800-3333-LAB (522)
>
> mob: +7-916-9086122
>
> skype: melanor9
>
> mailto: la at qrator.net
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 496 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <http://mailman.nanog.org/pipermail/nanog/attachments/20161222/de488c9b/attachment.sig>
More information about the NANOG
mailing list