Hello, welcome to the Thursday, December 22nd, 2016 edition of the Sands and the Storms,

on a stormcast. My name is Johannes Ulrich, and I'm recording from Jacksonville, Florida.

Looks like Mirai keeps fishing for random ports in order to find more vulnerable hosts. We saw a couple

different variations of the Telnet port, 23., 23,231 so that's 23231 was popular earlier

but then also they started scanning for 23,123 so a little permutation here, 23123. Apparently what they're looking for is people running

telnet servers on off ports. And of course, variations of that 23 and 23,000 scheme are

quite common in this case. And Ukraine ergo, a large power provider in the Ukraine is reporting a power outage that

may be related to a cyber attack.

Now of course it's just about a year ago that Ukraine was hit by a relatively large cyber

attack that caused a multi-hour outage for a large part

of the country.

And so far, not a huge surprise to see another one sort of a year later.

Also starting around the beginning of December, the Ukraine reported an increase in the

number of attacks and attack attempts that they have seen against

critical infrastructure.

At this point, there is no clear evidence, so a lot of speculation, but certainly possible

that what we're seeing here is a repeat of last year's event.

However, this time around, I've only heard about Nautage for one to two

hours, so quite a bit shorter than what we had last year. Of course, it could also be just

simple equipment failure, and in initial hours and days of NetHack like this, it's, of course,

difficult to figure out what caused a certain piece of

equipment to fail. And Netflix's Twitter account was compromised earlier today by a group that

...