infosec

We've disabled our monitoring of netflow feeds for W32/Conficker/Downadup infections. Given the decreasing number of vulnerable systems, the wide awareness of this issue and the low threat posed by the malware we've decided it was no longer worth the effort and resources to maintain a system that was generating a handful of alerts each day. Our reports of infections will continue, but they'll only be sourced from data sent to us by third parties such as Shadowserver.

Category Count Compromise 9 Copyright 1 Denial of Service 149 General Query 9 LEA Query 4 Legal/Policy Query 1 Malware 422 Net/Security Query 19 Other 17 Phishing 30 Scanning 15 Social Engineering 0

Category Count Compromise 152 Copyright 2 Denial of Service 16 General Query 6 LEA Query 1 Legal/Policy Query 1 Malware 618 Net/Security Query 4 Other 11 Phishing 14 Scanning 14 Social Engineering 0

You can call CSIRT for help   If you suspect that your institution is suffering from a DDoS attack you can call on Janet CSIRT for assistance. We can help you understand and analyse the traffic, and in most cases can work with our network operations centre and transit partners to filter traffic. Where possible we work with other network providers to eliminate the sources of the attack.