The recent MS SQL attack, brings up an interesting question, where is the best place to find out about DoS/DSoS/Worm attack news?

Obviously, the post-partem can be gotten from just about anywhere, but when things are first happening what is the best resource.

Also, if you have a specific resource you used post it here.

For me it was the nanog mailing list:

http://www.nanog.org/mailinglist.html

I use bugtraq myself:

http://online.securityfocus.com/archive/1

Originally posted by Matt Wade
I use bugtraq myself:

http://online.securityfocus.com/archive/1

ditto, gotta have bugtraq

I got the latest from a guy named Allan. Then following his advice, joined the nanog mailing list. :D

i folowed it viea 3 websites.
www.internethealth.com
www.arin.org (i think its .org)
and WHT. said thing is it was like the only site that would laod for me not even google or yahoo would load or take 2 to 5 mins to load for me.

i noticed at the worst the ping times were at like 2000 MS pluse.
MAN that is bad.

even MS got hit by it as well:D

Originally posted by James

www.arin.org (i think its .org)



www.arin.net

All the IANA regions are .net (www.ripe.net and www.apnic.net)

One of our servers in HE got hit. That's how I found out :cry:

Originally posted by elevation:

One of our servers in HE got hit. That's how I found out :cry:

Unfortunately, that's the way most people find out :(

Another good source that I don't think I have seen mentioned is DShield: http://www.dshield.org/

I just subscribed to nanaog.
-Max :)

Whats nanaog maxhest?

www.nanog.org

I was on freenode IRC when it happened last Janurary, they have pretty much anything latest on things like that, since quite a few actually work for telecommunication companies. (ex. UUNET, Sprint, Yipes, Level 3, Genuity, Qwest, just to name a few). They were actually make bets that something would happen regarding not patching the MS-SQL servers back when MS quietly released their patch.