Ecigssa spam alerts

cgs said:
View attachment 167158

Crafty indeed. You following the never-ending South China sea news at all?


Tangent: This is pretty cool to have a look at. It's a live "attack" map of all sorts.
https://threatmap.fortiguard.com/
edit: @RainstormZA , i think you'll dig this.

It's the wild west out there.
Click to expand...

Oh my word, that map is cool @cgs !
It looks like the US is being pummelled by these little blue strikes - looks like a video game. Haha
World war in cyberspace!

South Africa not getting any crossfire at the moment... it seems
 
Silver said:
Oh my word, that map is cool @cgs !
It looks like the US is being pummelled by these little blue strikes - looks like a video game. Haha
World war in cyberspace!

South Africa not getting any crossfire at the moment... it seems
Click to expand...

It is - with Huawei!
 
cgs said:
View attachment 167158

Crafty indeed. You following the never-ending South China sea news at all?


Tangent: This is pretty cool to have a look at. It's a live "attack" map of all sorts.
https://threatmap.fortiguard.com/
edit: @RainstormZA , i think you'll dig this.

It's the wild west out there.
Click to expand...

There's a poor server on the West coast of the US - looks like LA to me - that is getting pummelled all the time from all over the world :eek:

Even the odd shot being fired from South Africa into there. lol
So far I've not seen much attacks into SA.

I see Australia gets one or two shots into it occasionally. Hehe

It seems like these are attacks that are being resisted successfully. At least that is how I understand it.

Fascinating - once again, thanks for sharing this @cgs
 
Hooked said:
@cgs That list of countries at the bottom - are those the countries which are being attacked, or the source of the attacks?
Click to expand...

I think its a scrolling list of the counties being attacked. But its moving so fast you sometimes cant even see what country it is.... lol....

If you click on the little info icon at the top right it explains what the different colours mean (what type of attack)
 
Hooked said:
@cgs That list of countries at the bottom - are those the countries which are being attacked, or the source of the attacks?
Click to expand...

Those are the countries being threatened.
It's the devices that are reporting the threats as they attempt to neutralize them; still a lot that goes undetected.
Also, with things like TOR, you can re-route and make it look like you're coming from somewhere else.

If you double click on an area on the map it zooms in with some more info:
Screen Shot 2019-05-24 at 11.04.47.png

Here is another; not as busy but the scrolling comments are funny sometimes.
https://threatbutt.com/map/

@Silver
"It seems like these are attacks that are being resisted successfully. At least that is how I understand it."

100%, most enterprise routers/switches have some sort of threat management on them and subscribe to a dynamic list of all these threats, constantly updated.

Screen Shot 2019-05-24 at 11.00.55.png

But that's all boring stuff.

Google:
Weeping Angel
Vault 7

You can go down your own rabbit hole from there. :)
 
Thanks @cgs
So interesting

I assume you are in the cybersecurity world?
Perhaps you can help us to figure out a way to block our crafty spammers that pay us a visit from time to time :D
 
Silver said:
I assume you are in the cybersecurity world?
Click to expand...

Had exposure to security when I worked for ISPs but I'm more of a Linux/Server/Storage guy. Networking never really stuck.
IT is something I kinda just fell into because my parents wouldn't let me join Metallica.

Silver said:
Perhaps you can help us to figure out a way to block our crafty spammers that pay us a visit from time to time :D
Click to expand...

More than happy to take a look.
I don't know everything but know how to learn.
 
Suggestion:

I'm not sure how things are setup at the moment but perhaps go here for a start.

http://www.ipdeny.com/ipblocks/
(Zone files last updated: Tue May 21 12:08:15 UTC 2019)

You'll get a list of IPs / Ranges you can stick in a firewall or perhaps the forum software has a place for this.

Screen Shot 2019-05-28 at 10.45.04.png

Screen Shot 2019-05-28 at 10.46.12.png

Block China entirely for now and deal with vendors later.
Won't work if they use VPN but its a start.
 
Thanks @cgs

Will ask our technical folk to have a look at your post
Appreciate the comments and suggestions
 
cgs said:
Suggestion:

I'm not sure how things are setup at the moment but perhaps go here for a start.

http://www.ipdeny.com/ipblocks/
(Zone files last updated: Tue May 21 12:08:15 UTC 2019)

You'll get a list of IPs / Ranges you can stick in a firewall or perhaps the forum software has a place for this.

View attachment 167582

View attachment 167583

Block China entirely for now and deal with vendors later.
Won't work if they use VPN but its a start.
Click to expand...
i switch to Mikrotik along time ago and employ this simple strategy:
http://joshaven.com/resources/tricks/mikrotik-automatically-updated-address-list/
 
You must log in or register to reply here.

Similar threads

Sharrivz
Black November Specials at Vape King!
Replies
0
Views
110
Sharrivz
Sharrivz
SessionDrummer
Sterling Cloud Flavors Reviewed by SessionDrummer
Replies
0
Views
163
SessionDrummer
SessionDrummer
SessionDrummer
2024 Flavor Art Elite Flavors Reviewed by SessionDrummer
Replies
4
Views
293
SessionDrummer
SessionDrummer
Downtown Vapoury
Just arrived! The Lost Vape Quest Centaurus P200 Box Mod
Replies
0
Views
92
Downtown Vapoury
Downtown Vapoury
WintersFrost
Surprise !! I'm Back Baby
Replies
8
Views
399
WintersFrost
WintersFrost
Back
Top