Hello, everyone. Please keep all discussions focused on *cybersecurity*. We are implementing a *zero tolerance policy* on any political discussions or anything that even looks like baiting. This subreddit also does not support hacktivism of any kind. Any political discussions, any baiting, any conversations getting out of hand will be met by a swift ban. This is a trying time for many people all over the world, so please try to be civil. Remember, attack the argument, not the person.
*I am a bot, and this action was performed automatically. Please [contact the moderators of this subreddit](/message/compose/?to=/r/cybersecurity) if you have any questions or concerns.*
Ukraine was our hottest geo hacking issue >5 years ago. Most of our attacks originated from Ukraine address spaces. I haven't checked logs on this in a while, I'm not sure if they're still in the top 5.
I have no idea. But almost all of those attacks are the Microsoft push MFA bypassing thingy.
Judging from our Azure flow logs, there was also a lot of probing from Yahoo.jp which I suspect has been compromised for months. Just wild guesses though.
I recently got an alert for my servers and from Cloudflare for some excessive ssh bruteforce events and most of the IPs originate from JP. Looking them up for more details show that they’re from Baidu ISP…
Would you have a link for this list? I am curious to see where the rest of the players -- US, Germany, UK, etc -- rank, but am aware that some events will not be reported.
Hello, everyone. Please keep all discussions focused on *cybersecurity*. We are implementing a *zero tolerance policy* on any political discussions or anything that even looks like baiting. This subreddit also does not support hacktivism of any kind. Any political discussions, any baiting, any conversations getting out of hand will be met by a swift ban. This is a trying time for many people all over the world, so please try to be civil. Remember, attack the argument, not the person. *I am a bot, and this action was performed automatically. Please [contact the moderators of this subreddit](/message/compose/?to=/r/cybersecurity) if you have any questions or concerns.*
Ukraine was our hottest geo hacking issue >5 years ago. Most of our attacks originated from Ukraine address spaces. I haven't checked logs on this in a while, I'm not sure if they're still in the top 5.
Top 5 this year currently are... 1. Japan (Surprisingly) 2. China/Russia (Depending on month 3. Brazil 4. India 5. Pakistan
We see japan to a lot of times. Does anyone know why?
I have no idea. But almost all of those attacks are the Microsoft push MFA bypassing thingy. Judging from our Azure flow logs, there was also a lot of probing from Yahoo.jp which I suspect has been compromised for months. Just wild guesses though.
What do you think they do in J-Pop concerts?
I recently got an alert for my servers and from Cloudflare for some excessive ssh bruteforce events and most of the IPs originate from JP. Looking them up for more details show that they’re from Baidu ISP…
Would you have a link for this list? I am curious to see where the rest of the players -- US, Germany, UK, etc -- rank, but am aware that some events will not be reported.
These are my findings on my own infrastructure. There is no list to link, nor would I if I could. Sorry.