Russia shared a list of 17,576 IP addresses allegedly used to launch distributed denial-of-service (DDoS) attacks targeting Russian organizations and their networks.
The list was shared by the National Coordination Center for Computer Incidents (NKTsKI), an organization created by Russia’s Federal Security Service (FSB), together with guidance to defend against the attacks and a second list containing attackers’ referrer domain information.
“The National Coordinating Center for Computer Incidents (NCCC) in the context of massive computer attacks on Russian information resources recommends taking measures to counter threats to information security,” the Russian government agency said in a notice.
SharkBot malware hides as Android antivirus in Google Play
The list includes over 30 targets, such as Russian government agencies, IP addresses, storage devices, and mail servers, as well as state-owned banks, large corporations supporting Russian critical infrastructure, and high-profile Russian tech giants like the Yandex Russian search engine and email portal.
DDoS defense recommendations shared by the NKTsKI include:
- Using DDoS protection services
- Restricting network traffic based on the shared referrer info
- Disabling plugins and web statistics scripts
- Using Russian DNS servers
