Even if it's not seen that often here on Mastodon: I'd like to share some news on my carrier path: I am happy to announce that I was promoted to a Senior recently. What makes this milestone even more meaningful to me is achieving a promotion around a year after graduating, and transitioning to full-time here at #NETSCOUT. I am grateful for being part of the #ASERT team which provides this environment of growth and encouragement. A special thanks to my mentors, managers and team mates!

Let's get to work, and add more value, more novelty, more innovation to the threat intelligence that helps protecting the networks of our customers.

Don't worry, the next posts will focus on networking, internet infrastructure and nerd stuff again :)

RE: https://infosec.exchange/@jtk/115571840599359932

Boosting for visibility. @jtk and I briefly explored what we see on the /8s announced by CAMTEL. It's been discussed on the #NANOG mailing list as well.

#bgp #cameroon #asert

Some will likely remember that #MegaMedusa caused issues to many folks due to their #DDoS tool leveraging open #proxy infrastructure. Shortly after, there appeared a feed online called #MiniMedusa. This feed truly disrupted the efficacy of the tool, and lead to a sharp drop of notable DDoS events. I summarized insights of our telemetry in a blog post:

Who turns to stone now?

#ASERT #NETSCOUT #RipperSec #threatintel

Between February and August, the #Eleven11 was on the news. Using the parallel #DNS root #OpenNIC was nothing new for a botnet. Yet, this botnet was the first known botnet of it's size using the OpenNIC system.

We summarized insights in a new blog post: 161 Days of Eleven11

#DDoS #RapperBot #Eleven11bot #Netscout #ASERT #infosec

Iberian Peninsula Blackout: Effects in Cyberspace is a recently published blog post on the #electricity #outage in #Spain, #Portugal and some parts in #France. Unlike other posts, we at #ASERT do not only cover traffic pattern, but specifically shed light on the #DDoS landscape, and the effect the outage had on the region.

#SpainOutage #IberianPeninsula #IberianBlackout #Blackout

Sharing a recently published blog post of a colleague of mine. It covers activity on a recently emerged threat actor group with the name #DieNet

Profiling DieNet: A New Hacktivist Threat

#DDoS #NETSCOUT #ASERT

At #NETSCOUT #ASERT, we closely followed events in cyberspace during the World Economic Forum #WEF, which recently happened in #Davos, #Switzerland. We summarized the #DDoS attack insights in a short blog post that was just published today:

DDoS Attacks at the World Economic Forum (WEF)

While some report increased latency or no visible effect, we at #ASERT observed a noticeable decline of around 20% of egress traffic from Finland after the cut of the C-Lion1 submarine cable in the early morning hours of November 18. The traffic has yet to normalize for the past 72 hours.

#NETSCOUT #SubmarineCableCut #BalticSea

My colleague Marcin explored what #NETSCOUT #ASERT observes about the coordinated #DDoS effort against organizations in #Japan. #NoName057 and the #RussianCyberArmy team coordinated a DDoS campaign as a response to news on the military stage.

DDoS Attacks Against Japan

#Russia #Japan #Geopolitics

While most reports talk about the #databreach, the fact that a #DDoS attack happened, and the political motivations behind the threat actor attacking archive[.]org we at #NETSCOUT #ASERT used our insights, to explore what the DDoS attack looked like and what kind of botnet was involved. Today, we published a blog post about it: Internet Archive under assault

#internetarchive #blackmesa #ddos #infosec

Happy to announce the new iteration of #NETSCOUT #ASERT #DDoS Threat Intelligence Report - Issue 13. The three key findings focus on #threats, #targets and #defense. My personal favorite insight: We observed an average peak concurrent DDoS traffic of staggering 3.2 Tbps in 1H2024. The DDoS target section also covers the attacks tracked by us against different industries and really shows how noone is safe in today's geopolitical climate.

https://www.netscout.com/threatreport/

#threatintel #ddosattacks #hacktivism

While news were talking about the people's response to the #election results in #Venezuela, we at #ASERT checked for anomalies in the #cyberspace. Apart from increased #internet traffic volume, we discovered some #DDoS attacks, likely as a response to the political turmoil. More on our latest blog post:

https://www.netscout.com/blog/asert/venezuelas-election-seen-cyberspace

#infosec #ddos #ASERT #NETSCOUT #latam

Today @netscout , we observed the effects of what seems to have been the second in the most recent series of deliberate shutdowns of Internet traffic by the Iraqi government; these interruptions are apparently intended to curtail the ability of students to cheat on nationwide educational exams. It is notable that we observe significant spikes in traffic when connectivity is restored, presumably due to pent-up demand by Iraqi Internet users. This is a common phenomenon in cases of both deliberate and inadvertent interruptions in Internet connectivity, and can result in prolonged service disruption even after connectivity has been restored.

#Iraq #Internet #Asert #NETSCOUT

A new #NETSCOUT blog post went live on the notorious #threat actor group Anonymous Sudan:

https://www.netscout.com/blog/asert/anonymous-sudan

#AnonymousSudan #killnet #ASERT

Just recently, my colleagues at #NETSCOUT #ASERT published a new blog post on the importance of #DDoS defense mechanisms for both authoritative nameservers and recursive resolvers. It also sheds light on DDoS trends #DNS operators might want to pay attention to.

https://www.netscout.com/blog/asert/the-power-of-names