OARC is cooardinating collection of data that could help security researchers better understand this attack. If you are willing to help out by sending us some packet captures, please consider running the shell script found on our web page: https://www.dns-oarc.net/node/171 Duane W.