This is a coordinated hacking. (Was Re: Need help in flushing DNS)
Carsten Bormann
cabo at tzi.org
Thu Jun 20 21:10:30 UTC 2013
Wild speculation:
netsol says this is a human error incurred during DDOS mitigation.
ztomy.com is a wild-card DNS provider that seems to use prolexic.
Now imagine someone at netsol or its DDOS service providers
fat-fingered their DDOS-averting routing in such a way that netsol
DNS traffic arrived at ztomy.com instead of a netsol server.
The ztomy.com server would know how to answer the queries...
I have no data to base this speculation on.
Grüße, Carsten
More information about the NANOG
mailing list