Don L wrote: > Yesterday around 7pm EST my box has been ruthlessly attacked (port scan and > then data/schema alternation) by 75.126.166.15, which traced to SoftLayer > Technologies, Inc. in TX. > > My course of actions: > a) prepare a law suit; > b) inform FBI.
My course of actions would have been: - take box down; - remove harddisk; - lock compromised harddisk in safe for later analysis; - put in new harddisk; - rebuild from backups; - analyze harddisk; - fix the security problem; - get back in business; - file a police report if considerable damages. I would have made very certain I didn't point fingers in public because it would ruin my chances in a lawsuit and it most likely meets the legal definition of libel. BTW, did you check to see if the attacker used your system to attack others? There may be people somewhere online blaming you for attacking them and filing reports to the FBI about you. Jochem ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to date Get the Free Trial http://ad.doubleclick.net/clk;160198600;22374440;w Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:299121 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
