This morning, February 19, 2013 at about 3 AM an email arrived which set off alarms. Monitoring software on one of our servers had discovered a suspicious file: /lib64/libkeyutils.so.1.9. Investigation revealed that this file is part of a server compromise. How the attacker is able to put this file in place is as yet unknown. […]
Automated Email Checking
Setting your email client (MS-Outlook, Windows mail, Thunderbird, etc.) to check email too often is abuse. Sometimes it’s accidental abuse. It’s common for unstable programs like Microsoft Outlook to become corrupted and go wild, checking incessantly. Recently we implemented a system to track (among many other things) email logins. When too many logins to a […]