YIKES!
I don't want to cause any unnecessary concern, or bring any harm to this region, but out of an abundance of caution, I thought it best to post about this experience.
Earlier today I visited the top three busiest regions listed by OSW. One of them was Sexy Naked Beach, hosted by the mk3.org domain. While there, I used the teleport and another scripted object. I got a notification from Norton 360 that it blocked an attempt to connect to mk3.org. I understand that scripted objects can cause a client like Firestorm to contact external URLs for legitimate reasons. However, there was also the repeated attempt to add mk3.org:5002 to my grid list. These alerts from the viewer and Norton 360 came in a cluster of 5, every few minutes, even after I left the grid. I cleared my cache, restarted my computer and logged back on my region. The alerts resumed.
I’m looking deeper into the incident and taking remedial measures. I’ve also alerted the region. I’ll post a comment with any additional information I get, and I imagine someone from the region will also comment. If anyone else has a comment, I’m interested to see it. In over 20 years in SL/OS, I’ve never seen this before. If there is no reason for me to be concerned, at least I will have learned something.
| Nico Kalani: Still looking into this incident. It could be entirely innocent, albeit annoying. I reviewed the logs and see that Firestorm is fetching grid info from those listed in the grid manager, but also 5 (re... 1 hour ago |