Proof-of-concept code to run massive DDoS attacks using unsecured Memcached servers has been published online this week, along with a ready-made list of over 17,000 IP addresses belonging to vulnerable Memcached servers.
Two, and not one, of such proof-of-concept (PoC) utilities, have been released, both uniques in their own way.
PoC #1
The first is a Python script named Memcacrashed.py that scans Shodan for IPs of vulnerable Memcached servers and allows a user to launch a DDoS attack against a desired target within seconds of running the tool.
The creator of this tool is —surprisingly— the infosec researcher behind the Spuz.me blog.
...
...
...
Adobe warns of critical ColdFusion bug with PoC exploit code
Opera Browser Vulnerable to Cross-Browser Attacks via Malicious Extensions![[correlate]](/data/avatars/s/79/79653.jpg?1556985072)
Fake WinRAR proof-of-concept exploit drops VenomRAT malware