SQL server port under heavy scanning
Symantec issued an alert Monday that it had detected unusual amounts of scanning of a port normally associated with Microsoft SQL Server, a possible precursor to an attack.
The DeepSight Threat network reported an increase in the number of scanned sensors and the number of attacking IP addresses scanning TCP port 1443, which is commonly used by Microsoft's server software.
At Security Pipeline.
[ Read more ]