16 Oct
2019
16 Oct
'19
10:38 a.m.
On Wed, 16 Oct 2019 12:50:17 -0000, Ryland Kremeier said:
I believe we have found 1 customer that is infected with a botnet or malware.
I've dealt with plenty of botnets working as a repair technician in the past but never had one change the public IP address of the user. Not entirely sure what this would accomplish aside from making it much easier to detect.
To detect that somebody isn't doing BCP38 filtering of their customers, you mean? :)