International Hacking
So this is the international hacking of one of our clients. We have been doing a great job of due diligence and avoid getting hacked. Someone in Europe really has it out for this site. Well, not under our watch!
Activity from the UK attacking a client’s website, and the hacker is relatively skilled at what they are trying to do. We will find you.
With a defense-in-depth and solid disaster recovery and business continuity plan in place, they are holding up fairly well. For privacy reasons, we cannot post everything about the hack. However, if you have a botnet at your disposal for a DDoS, let us know. Someone overseas wants to play!
While it was alarming that this attack came out of nowhere, as no hacking attempts were made until a random day and time and for no reason. It was a relatively obvious brute force attack on the login page, trying to grab the /etc/passwd file and the /etc/mysql/my.cnf file. No one should be trying to access these files.
The client was relieved to hear that while this was going on, ZP Enterprises could detect it and block the attack/hack from impacting their eCommerce site, where the majority of their revenue was generated.
May is only halfway through, and 340 high-profile attacks have been blocked for this particular client. If the trend remains steady, this will be 680 attack attempts on their site. This Covid-19 home lock-down has people at home that are bored. That is sometimes what un-stimulated techies do for fun, monetary gain, or a public embarrassment. But this was for an eCommerce site. Not good.
If you would like this level of security for your company, please contact us and let us know how we can help, and a detailed plan can be custom developed for you.