Howdy, Stranger!

It looks like you're new here. If you want to get involved, click one of these buttons!

Subscribe to our newsletter

Advertise on LowEndTalk.com

Latest LowEndBox Offers

    Hetzner - Abuse Message Help please?
    New on LowEndTalk? Please read our 'Community Rules' by clicking on it in the right menu!

    Hetzner - Abuse Message Help please?

    Hi, I recieved this mail 1 hour ago, what is this I dont understand that

    Dear Mr XXXXXXX,

    We received a security alert from the German Federal Office for Information Security (BSI).
    Please see the original report included below for details.

    Please investigate and solve the reported issue.
    It is not required that you reply to either us or the BSI.
    If the issue has been fixed successfully, you should not receive any further notifications.

    Additional information is provided with the HOWTOs referenced in the report.
    In case of further questions, please contact [email protected] and keep the
    ticket number of the original report [CB-Report#...] in the subject line.
    Do not reply reports@reports.cert-bund.de as this is just the sender address for the
    reports and messages sent to this address will not be read.

    Kind regards

    Abuse team

    On 29 Aug 07:18, [email protected] wrote:

    Dear Sir or Madam,

    NetBIOS defines a software interface and a naming convention.
    NetBIOS over TCP/IP provides the NetBIOS programming interface
    over the TCP/IP protocol.

    Over the past months, systems responding to NetBIOS nameservice
    requests from anywhere on the Internet have been increasingly
    abused for DDoS reflection attacks against third parties.

    Affected systems on your network:

    Format: ASN | IP | Timestamp (UTC) | Workgroup name | Machine name
    24xxx | 176.xx.xxx.xxx | 2018-08-28 00:17:31 | WORKGROUP | WIN-xxxGNT1SxKV

    We would like to ask you to check this issue and take appropriate
    steps to secure the NetBIOS nameservices services on the affected
    systems or notify your customers accordingly.

    If you have recently solved the issue but received this notification
    again, please note the timestamp included below. You should not
    receive any further notifications with timestamps after the issue
    has been solved.

    Additional information on this notification, advice on how to fix
    reported issues and answers to frequently asked questions:
    https://reports.cert-bund.de/en/

    This message is digitally signed using PGP.
    Information on the signature key is available at:
    https://reports.cert-bund.de/en/digital-signature

    Please note:
    This is an automatically generated message. Replies to the
    sender address reports@reports.cert-bund.de will NOT be read
    but silently be discarded. In case of questions, please contact
    certbund@bsi.bund.de and keep the ticket number [CB-Report#...]
    of this message in the subject line.

    !! Please make sure to consult our HOWTOs and FAQ available at
    !! https://reports.cert-bund.de/en/ first.

    Mit freundlichen Gren / Kind regards
    Team CERT-Bund

    Bundesamt fr Sicherheit in der Informationstechnik
    Federal Office for Information Security (BSI)
    Referat CK22 - CERT-Bund
    Godesberger Allee 185-189, 53175 Bonn, Germany

    Comments

    Sign In or Register to comment.