my tweets are severely limited by my lack of understanding of what I am doing.
5 of the 6 #EternalPot honeypots are down after being owned in wild via SMB MS17-010 and trashed. 4 of them ran next gen security products.
-
My bet is multiple attackers fighting over the same turf. If they don't know each other are there, it's easy to screw up.
Yep. In this case it's idiots accidentally locking themselves out, this one is one actor who used IPSec to block traffic - everything 
