Return-Path: <sentto-279987-1181-988761448-fc=all.net@returns.onelist.com> Delivered-To: fc@all.net Received: from 204.181.12.215 by localhost with POP3 (fetchmail-5.1.0) for fc@localhost (single-drop); Tue, 01 May 2001 16:58:07 -0700 (PDT) Received: (qmail 23271 invoked by uid 510); 1 May 2001 22:58:38 -0000 Received: from ci.egroups.com (64.211.240.235) by 204.181.12.215 with SMTP; 1 May 2001 22:58:38 -0000 X-eGroups-Return: sentto-279987-1181-988761448-fc=all.net@returns.onelist.com Received: from [10.1.4.55] by ci.egroups.com with NNFMP; 01 May 2001 23:57:29 -0000 X-Sender: tony_mht@hotmail.com X-Apparently-To: iwar@yahoogroups.com Received: (EGP: mail-7_1_2); 1 May 2001 23:57:27 -0000 Received: (qmail 48086 invoked from network); 1 May 2001 19:51:53 -0000 Received: from unknown (10.1.10.27) by l9.egroups.com with QMQP; 1 May 2001 19:51:53 -0000 Received: from unknown (HELO hotmail.com) (64.4.14.133) by mta2 with SMTP; 1 May 2001 19:51:53 -0000 Received: from mail pickup service by hotmail.com with Microsoft SMTPSVC; Sun, 29 Apr 2001 13:41:19 -0700 Received: from 63.215.236.216 by lw10fd.law10.hotmail.msn.com with HTTP; Sun, 29 Apr 2001 20:41:18 GMT X-Originating-IP: [63.215.236.216] To: iwar@yahoogroups.com Message-ID: <F258PYGEThydAGiw1dj0000283d@hotmail.com> X-OriginalArrivalTime: 29 Apr 2001 20:41:19.0032 (UTC) FILETIME=[BE52A380:01C0D0EC] From: "mo haitao" <tony_mht@hotmail.com> Mailing-List: list iwar@yahoogroups.com; contact iwar-owner@yahoogroups.com Delivered-To: mailing list iwar@yahoogroups.com Precedence: bulk List-Unsubscribe: <mailto:iwar-unsubscribe@yahoogroups.com> Date: Sun, 29 Apr 2001 16:41:18 -0400 Reply-To: iwar@yahoogroups.com Subject: [iwar] Advisory from NIPC Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit ADVISORY 01-009 "Increased Internet Attacks Against U.S. Web Sites and Mail Servers Possible in Early May" Issued 04/26/2001 Citing recent events between the United States and the People's Republic of China (PRC), malicious hackers have escalated web page defacements over the Internet. This communication is to advise network administrators of the potential for increased hacker activity directed at U.S. systems during the period of April 30, 2001 to May 7, 2001. Chinese hackers have publicly discussed increasing their activity during this period, which coincides with dates of historic significance in the PRC: May 1 is May Day; May 4 is Youth Day; and, May 7 is the anniversary of the accidental bombing of the Chinese Embassy in Belgrade. To date, hackers already have unlawfully defaced a number of U.S. web sites, replacing existing content with pro-Chinese or anti-U.S. rhetoric. In addition, the NIPC previously reported on an Internet worm named "Lion" that is infecting computers and installing distributed denial of service (DDOS) tools on various systems. Analysis of the Lion worm's source code reveals that, when illegally exploited, it sends password files from the victim site to an email address located in China. For more information on the Lion DDOS tool, refer to NIPC Advisory 01-005. As a result of the activity already seen, together with public statements threatening increased illegal activity, network and system administrators are encouraged to more closely monitor their web sites and mail servers during April 30, 2001 through May 7, 2001 for attacks that could include web page defacements and denial-of-service attacks. Recipients of this advisory are encouraged to report computer intrusions to their local FBI office (http://www.fbi.gov/contact/fo/fo.htm) or the NIPC, and to other appropriate authorities. Incidents may be reported online at http://www.NIPC.gov/incident/cirr.htm. The NIPC Watch and Warning Unit can be reached at (202) 323-3204/3205/3206 or NIPC.Watch@fbi.gov. http://www.nipc.gov/warnings/advisories/2001/01-009.htm Tony April 29,2001 _________________________________________________________________ Get your FREE download of MSN Explorer at http://explorer.msn.com ------------------ http://all.net/ Your use of Yahoo! Groups is subject to http://docs.yahoo.com/info/terms/
This archive was generated by hypermail 2.1.2 : 2001-06-30 21:44:10 PDT