ec2

Amazon Responds About SIP Attacks From EC2

On April 18th Amazon finally responded publicly with respect to the SIP attacks recently suffered from hosts within their EC2 service. Their response comes in the form of an informational security bulletin posted to their AWS Security Center.

There have been some recent discussions about SIP brute force attacks originating from Amazon EC2. We can confirm that several users reported SIP brute force attacks originating from a small number of Amazon EC2 instances about a week ago. It appears these attacks were designed to exploit security vulnerabilities in the SIP protocol. There is nothing specific about this attack that requires Amazon EC2. It was a brute force attack that could be launched from any computer on any network.

Read More

Amazon: You Got Some ‘Splaining To Do

Over the past week friend and VUC regular contributor Fred Posner has been suffering a SIP attack from someone using the Amazon EC2 cloud. Fred’s more than just a  friend, he’s a well established small businessman and an upstanding member of the Asterisk user community.

On his VoIP Tech Chat blog Fred has documented with outstanding clarity his attempts to report the attack that he has suffered this past week, and Amazon’s rather limited response. My opinion is that Fred has done exactly as he should in his efforts to report the attack. It’s Amazon’s response that has fallen short.

Read More
Back To Top