There exists a multithreaded SSH bruteforcer called “haita” which try to login with ‘guest’ or ‘test’ (and same password). Read the full story on the incident@securityfocus.com mailinglist.
An admin let the attacker break in a system (some kind of honeypot) and talk to him on IRC: Shell commands and IRC session with a script kiddie from .ro. Funny 😉