Since April 9th I'm seeing a sudden influx of packets using the chaos IP protol (PROTO=16). Can't say I've ever seen those before, but over the last 3 days I've received almost 80,000 packets, sent from 17 IP addresses in vastly different locations:
Due to this it seems reasonable to assume there's a botnet behind it all, but I'm have a very hard time finding any information on attacks using IP procotol 16, a.k.a. "chaos" (http://en.wikipedia.org/wiki/Chaosnet)
Is anyone else seeing this as well? Any clues as to what might be going on, and what the likely attack vector might be?
Thanks in advance for sharing your insight!
|thread locked Quote Subscribe||
Apr 11th 2015
5 years ago