Forum running slowly
why would anyone wish to attack a forum such as this one, how do they benefit or what would they gain from such a pointless action. Why?
Because they can. I had my VPS hacked a little while ago and they used it to run DDOS attacks for a few hours until the hosting company took my server down
Looked like they did a brute force attack via RDP to get onto it
just bored idiots then; surely if they know and are capable of doing these things, surely they would have the imagination to do something worth the effort with their ability and not just pointlessly dick around.sniffer66 wrote: ↑Wed Jan 10, 2024 2:50 pmBecause they can. I had my VPS hacked a little while ago and they used it to run DDOS attacks for a few hours until the hosting company took my server down
Looked like they did a brute force attack via RDP to get onto it
Attacks like that tend to be script kiddies dicking around. You don't even have to write the code yourself. You can buy the tools to do it for very little (I did IT Security for a while)to75ne wrote: ↑Wed Jan 10, 2024 3:15 pmjust bored idiots then; surely if they know and are capable of doing these things, surely they would have the imagination to do something worth the effort with their ability and not just pointlessly dick around.
I would suggest these are automated systems looking for security weaknesses. An attack is one thing, recovering from it and reinstating your security is another. Credit to the BA tech's!to75ne wrote: ↑Wed Jan 10, 2024 3:15 pmjust bored idiots then; surely if they know and are capable of doing these things, surely they would have the imagination to do something worth the effort with their ability and not just pointlessly dick around.
if they find a security weakness how does that benefit anyone its a forum.greenmark wrote: ↑Wed Jan 10, 2024 3:22 pmI would suggest these are automated systems looking for security weaknesses. An attack is one thing, recovering from it and reinstating your security is another. Credit to the BA tech's!
there are no financial transactions here, no betfair user id's and passwords etc, just a forum.
i don't know but i assume there are no links directly to the business side/financial side of b.a. Mr Webb is hardly likely to allow that.
so why bother i don't see the point at all.
That's correct, there is no sensitive information here at all and the forum now has it's own server, so it's near useless in terms of information. Apart from the many pearls of wisdom from forum members
So it does feel targetted, aimed at disrupting things and tying up resources. It's happened a few times now, and we don't see it happen on other related sites, and they are full of security holes based on our hard-earned experience. So it seems a bit odd.
So it does feel targetted, aimed at disrupting things and tying up resources. It's happened a few times now, and we don't see it happen on other related sites, and they are full of security holes based on our hard-earned experience. So it seems a bit odd.
Goes on all the time - if you run any servers check the logs - filled with hack attempts 24/7
I close all the common ports I don't need and only open them for a short time when needed eg FTP
Also move the RDP port off the known standard - carefully otherwise you lock yourself out
I close all the common ports I don't need and only open them for a short time when needed eg FTP
Also move the RDP port off the known standard - carefully otherwise you lock yourself out