Max ResingJan 16

Even if it's not seen that often here on Mastodon: I'd like to share some news on my carrier path: I am happy to announce that I was promoted to a Senior recently. What makes this milestone even more meaningful to me is achieving a promotion around a year after graduating, and transitioning to full-time here at #NETSCOUT. I am grateful for being part of the #ASERT team which provides this environment of growth and encouragement. A special thanks to my mentors, managers and team mates!

Let's get to work, and add more value, more novelty, more innovation to the threat intelligence that helps protecting the networks of our customers.

Don't worry, the next posts will focus on networking, internet infrastructure and nerd stuff again :)

Max ResingDec 17

My colleague @jtk and I worked on a small piece on insights by #Netscout on the DNS root server system. Despite all of the nuisance traffic reaching the root servers, our #DDoS telemetry does not yield terribly much. This is not a bad thing though, and can be explained through the ubiquity of #anycast on the 13 root server instances.

#DNS #criticalinfrastructure #internet #resiliency

DNS Root Server Attacks | NETSCOUT

Executive SummaryThe internet is a system of systems. There is no central organizing committee that governs how it is constructed and operated.

NETSCOUT
Max ResingNov 14

Some will likely remember that #MegaMedusa caused issues to many folks due to their #DDoS tool leveraging open #proxy infrastructure. Shortly after, there appeared a feed online called #MiniMedusa. This feed truly disrupted the efficacy of the tool, and lead to a sharp drop of notable DDoS events. I summarized insights of our telemetry in a blog post:

Who turns to stone now?

#ASERT #NETSCOUT #RipperSec #threatintel

Who Turns to Stone Now? | NETSCOUT

Executive SummaryWhen does sharing threat intelligence actually stop attacks? The MegaMedusa case provides a rare, measurable answer.

NETSCOUT
Max ResingNov 10

Between February and August, the #Eleven11 was on the news. Using the parallel #DNS root #OpenNIC was nothing new for a botnet. Yet, this botnet was the first known botnet of it's size using the OpenNIC system.

We summarized insights in a new blog post: 161 Days of Eleven11

#DDoS #RapperBot #Eleven11bot #Netscout #ASERT #infosec

161 Days of Eleven11 | NETSCOUT

Executive SummaryAs a major player in the field of distributed denial-of-service (DDoS) detection and mitigation, it is crucial for us to closely monitor evolving threa

NETSCOUT
KrebsOnSecurity RSSOct 10

DDoS Botnet Aisuru Blankets US ISPs in Record DDoS

https://krebsonsecurity.com/2025/10/ddos-botnet-aisuru-blankets-us-isps-in-record-ddos/

#U.S.DepartmentofJustice #InternetofThings(IoT) #CharterCommunications #GlobalSecureLayer #LatestWarnings #TheComingStorm #ErikBuckingham #StevenFerguson #DDoS-for-Hire #ddos-for-hire #ProjectShield #rolanddobbins #RobertCoelho #WebFraud2.0 #9gigsofram #Botshield #Minecraft #ProxyPipe #RapperBot #TCPShield #NETSCOUT #T-Mobile #Totolink #Comcast #Verizon

DDoS Botnet Aisuru Blankets US ISPs in Record DDoS – Krebs on Security

Max ResingMay 7, 2025

Sharing a recently published blog post of a colleague of mine. It covers activity on a recently emerged threat actor group with the name #DieNet

Profiling DieNet: A New Hacktivist Threat

#DDoS #NETSCOUT #ASERT

Profiling DieNet: A New Hacktivist Threat | NETSCOUT

Executive Summary

NETSCOUT
psuPeteApr 12, 2025

#LLRX #CyberSecurity @bespacific

Pete Recommends – Weekly highlights on cyber security issues, April 12, 2025

Five highlights from this week: #Biometrics vs. passcodes: What lawyers recommend if you're worried about warrantless phone searches; #DDoS Attacks Now Key Weapons in Geopolitical Conflicts, #NETSCOUT Warns; Google Maps doubles down on preventing fake reviews; Large number of US adults view AI as a threat: Report; and Explosive Growth of Non-Human Identities (#NHI) Creating Massive Security Blind Spots.

Posted in: #AI Cybercrime, Cybersecurity, #Privacy

https://www.llrx.com/2025/04/pete-recommends-weekly-highlights-on-cyber-security-issues-april-12-2025/

Max ResingApr 2, 2025

News on the #DDoS front: The latest #threatreport of #NETSCOUT was just published. As usual, a great read for those in the industry!

netscout.com/threatreport/

NETSCOUT Threat Intelligence Report

NETSCOUT’s latest DDoS Cyber Threat Intelligence Report showcases the latest trends in cyber attacks. Learn more from our latest cyber threat intelligence report.

Latest Cyber Threat Intelligence Report
Max ResingMar 18, 2025

My colleague and I recently worked on a blog post here at #NETSCOUT in which we explore a coordinated cyber response against organizations in #Italy. Political alignment once again lead to severe action happening in the cyber space.

Despite the increased activity of threat actors, and the increased perception of public claims, in the broader picture of #DDoS, Italy did not experience a substantial change DDoS trends.

More in the latest blog post Italy in the Crosshairs

#threatintel #europe #infosec

Italy in the Crosshairs | NETSCOUT

Reports of cyberattacks against Italian organizations spiked on February 16th, lasting for two weeks before tapering off by March 3rd.

NETSCOUT
Max ResingFeb 20, 2025

At #NETSCOUT #ASERT, we closely followed events in cyberspace during the World Economic Forum #WEF, which recently happened in #Davos, #Switzerland. We summarized the #DDoS attack insights in a short blog post that was just published today:

DDoS Attacks at the World Economic Forum (WEF)

DDoS Attacks at the World Economic Forum (WEF) | NETSCOUT

Executive SummaryBetween January 20 and 24, the town of Davos-Klosters, Switzerland hosted the annual World Economic Forum (WEF).

NETSCOUT