Even if it's not seen that often here on Mastodon: I'd like to share some news on my carrier path: I am happy to announce that I was promoted to a Senior recently. What makes this milestone even more meaningful to me is achieving a promotion around a year after graduating, and transitioning to full-time here at #NETSCOUT. I am grateful for being part of the #ASERT team which provides this environment of growth and encouragement. A special thanks to my mentors, managers and team mates!

Let's get to work, and add more value, more novelty, more innovation to the threat intelligence that helps protecting the networks of our customers.

Don't worry, the next posts will focus on networking, internet infrastructure and nerd stuff again :)

RE: https://infosec.exchange/@jtk/115571840599359932

Boosting for visibility. @jtk and I briefly explored what we see on the /8s announced by CAMTEL. It's been discussed on the #NANOG mailing list as well.

#bgp #cameroon #asert

Some will likely remember that #MegaMedusa caused issues to many folks due to their #DDoS tool leveraging open #proxy infrastructure. Shortly after, there appeared a feed online called #MiniMedusa. This feed truly disrupted the efficacy of the tool, and lead to a sharp drop of notable DDoS events. I summarized insights of our telemetry in a blog post:

Who turns to stone now?

#ASERT #NETSCOUT #RipperSec #threatintel

Between February and August, the #Eleven11 was on the news. Using the parallel #DNS root #OpenNIC was nothing new for a botnet. Yet, this botnet was the first known botnet of it's size using the OpenNIC system.

We summarized insights in a new blog post: 161 Days of Eleven11

#DDoS #RapperBot #Eleven11bot #Netscout #ASERT #infosec

Iberian Peninsula Blackout: Effects in Cyberspace is a recently published blog post on the #electricity #outage in #Spain, #Portugal and some parts in #France. Unlike other posts, we at #ASERT do not only cover traffic pattern, but specifically shed light on the #DDoS landscape, and the effect the outage had on the region.

#SpainOutage #IberianPeninsula #IberianBlackout #Blackout

Sharing a recently published blog post of a colleague of mine. It covers activity on a recently emerged threat actor group with the name #DieNet

Profiling DieNet: A New Hacktivist Threat

#DDoS #NETSCOUT #ASERT

At #NETSCOUT #ASERT, we closely followed events in cyberspace during the World Economic Forum #WEF, which recently happened in #Davos, #Switzerland. We summarized the #DDoS attack insights in a short blog post that was just published today:

DDoS Attacks at the World Economic Forum (WEF)

While some report increased latency or no visible effect, we at #ASERT observed a noticeable decline of around 20% of egress traffic from Finland after the cut of the C-Lion1 submarine cable in the early morning hours of November 18. The traffic has yet to normalize for the past 72 hours.

#NETSCOUT #SubmarineCableCut #BalticSea

My colleague Marcin explored what #NETSCOUT #ASERT observes about the coordinated #DDoS effort against organizations in #Japan. #NoName057 and the #RussianCyberArmy team coordinated a DDoS campaign as a response to news on the military stage.

DDoS Attacks Against Japan

#Russia #Japan #Geopolitics

While most reports talk about the #databreach, the fact that a #DDoS attack happened, and the political motivations behind the threat actor attacking archive[.]org we at #NETSCOUT #ASERT used our insights, to explore what the DDoS attack looked like and what kind of botnet was involved. Today, we published a blog post about it: Internet Archive under assault

#internetarchive #blackmesa #ddos #infosec