Hack attack attack (1 Viewer)

Jon

Access World Site Owner
Staff member
Local time
Today, 17:53
Joined
Sep 28, 1999
Messages
7,304
The site has been bombarded with hack attacks over the last couple of days. Sample below:

The Wordfence Web Application Firewall has blocked 107 attacks over the last 10 minutes. Below is a sample of these recent attacks:May 27, 2021 11:44am 77.77.223.193 (Bosnia and Herzegovina) Blocked for Known malicious User-Agents
May 27, 2021 11:44am 77.77.223.193 (Bosnia and Herzegovina) Blocked for Known malicious User-Agents
May 27, 2021 11:44am 146.185.33.144 (Lebanon) Blocked for Known malicious User-Agents
May 27, 2021 11:44am 146.185.33.144 (Lebanon) Blocked for Known malicious User-Agents
May 27, 2021 11:44am 95.168.120.15 (Croatia) Blocked for Known malicious User-Agents
May 27, 2021 11:44am 65.129.76.121 (United States) Blocked for Known malicious User-Agents
May 27, 2021 11:43am 37.112.20.253 (Russian Federation) Blocked for Known malicious User-Agents
May 27, 2021 11:43am 82.205.56.161 (Palestinian Territory) Blocked for Known malicious User-Agents
May 27, 2021 11:43am 37.112.20.253 (Russian Federation) Blocked for Known malicious User-Agents
May 27, 2021 11:43am 82.205.56.161 (Palestinian Territory) Blocked for Known malicious User-Agents

The hack attack attack comment comes from me watching the Europa League final yesterday where the crowd were chanting, "Attack! Attack! Attack!"
 

Uncle Gizmo

Nifty Access Guy
Staff member
Local time
Today, 17:53
Joined
Jul 9, 2003
Messages
16,244
I have noticed a few glitches lately where it says the website wasn't available. I wonder if that's due to this attack?
 

Jon

Access World Site Owner
Staff member
Local time
Today, 17:53
Joined
Sep 28, 1999
Messages
7,304
Hey @moke123, that is a really cool map! The servers for this site are hosted in the US.
 

The_Doc_Man

Immoderate Moderator
Staff member
Local time
Today, 12:53
Joined
Feb 28, 2001
Messages
26,999
I have always liked Kaspersky's protection suites. They have several features that were mentioned in some of my security classes about "desirable abilities." They have an auto-updated signature file but they also have heuristics abilities, auto-update of their own code, and "hot-spot" monitoring to keep an eye on specifically vulnerable spots. The only things I've ever had that tripped the hot-spot occurred several years ago when a game tried to take over direct control of the display because I chose the wrong "driver mode" for it. (It was fixable.)

Kaspersky's servers are world-wide so you can get their updates without having to suffer the slowdowns inherent in using the Transatlantic Cable routes. (Not that the Transatlantic Cable is slow, but tens of thousands of downloads over ANYTHING would make it slow.)
 

Jon

Access World Site Owner
Staff member
Local time
Today, 17:53
Joined
Sep 28, 1999
Messages
7,304
I use Kaspersky on my Windows environment.
 

Jon

Access World Site Owner
Staff member
Local time
Today, 17:53
Joined
Sep 28, 1999
Messages
7,304
For your interest...

1623930730255.png


1623930802644.png


1623930823590.png
 

Jon

Access World Site Owner
Staff member
Local time
Today, 17:53
Joined
Sep 28, 1999
Messages
7,304
We have just been getting up to 60 probing attacks per second from one ip address. It caused search to break.
 

Jon

Access World Site Owner
Staff member
Local time
Today, 17:53
Joined
Sep 28, 1999
Messages
7,304
I find it interesting that the Czech Republic is at the top of the list John
I thought the same at first, but it is only for that one specific ip address. i.e. one person hammering from the same ip address. India is by far the worse offender.
 

Jon

Access World Site Owner
Staff member
Local time
Today, 17:53
Joined
Sep 28, 1999
Messages
7,304
They want to hack to get into the site, put their own links in there, get passwords, user details etc.
 

Isaac

Lifelong Learner
Local time
Today, 10:53
Joined
Mar 14, 2017
Messages
8,738
Yesterday I had a troubling thought. I certainly hope that the attacks are just garden variety usual sources, and not some deranged, vindictive former AWF member or something. (The countries of origin mean little to me, as I know how easy it is to spoof your location/IP as being from anywhere). I hope I'm wrong, and I probably am, it's just I've seen some strange stuff on here....

And the other day I got an email from my subscription to a Power Apps help forum. The email was a message posted by a user that must have gone out to scores of people, full of stuff that looked identical to baraae's posts...just a fire hose of extremist/offensive thoughts all run together. I was concerned that it ended up in my work email! Talk about NSFW.
 

Saphirah

Active member
Local time
Today, 18:53
Joined
Apr 5, 2020
Messages
163
They want to hack to get into the site, put their own links in there, get passwords, user details etc.
This i understand, but DDos is a denial of service attack and usually does not grant you passwords and stuff... So why in the world would you want a free access code forum to shutdown?
Yesterday I had a troubling thought. I certainly hope that the attacks are just garden variety usual sources, and not some deranged, vindictive former AWF member or something.
This was my thought at first, and kinda the only explanation... Hmmmm
 

Jon

Access World Site Owner
Staff member
Local time
Today, 17:53
Joined
Sep 28, 1999
Messages
7,304
I am not aware of any DDos attack on the site.
 

Users who are viewing this thread

Top Bottom