What the heck is “wubao” and “jiamima” in ssh Brute Force Attacks?

According to my sources in Hong Kong,

> wubao = 誤報, means something wrongly reported
> jiamima = 加密碼, can mean ‘add password’ or ‘encryption code’

None-the-less, these two passwords are the first ones tried from sshPsycho when they start attacking a server.

I think that this shows that sshPsycho doesn’t have a centralized server to record which IP addresses they already have taken control of.

>>>>>>Ericw

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s