An alert just came in from Trend Micro that says they are concerned about a potential Internet attack. This is vague and I know it sounds like it’s coming from the US Department of “Homeland Security.” Here it is:
High Probe Traffic Seen on ServerProtect Port 5168
PSP Announcement – 8/23/2007 6:53:13 AM – Proactive Notification: High Probe Traffic Seen on ServerProtect Port 5168 – Dear All:ICS  has reported a spike in the probe traffic on port 5168 which is used by ServerProtect. This might be an indication that hackers are preparing to launch an attack against this port. At this point however, we have not received any reports or samples which demonstrate the exploit.Please ensure that your Server Protect Systems have applied security patch 4 to ensure that known vulnerabilities are patched.
Please download the latest Server Protect Patch from the Trend Micro URL: