Cloud Computing Dallas - Russian IP Attempted Hacks

August 22, 2024

Cloud Computing Dallas - Russian IP Attempted Hacks

We have detected a massive spike of brute force and script attacks originating from the Russian Federation assigned block of public IP addresses. Due to the scope of the attacks, we will need to block all IPs that are attached to Russian assets to protect your servers efficiently. Your network security and integrity is of our highest priority, and we are doing everything we can to stem these attacks; thus far, we have no evidence to show that your server was compromised. Keeping your systems up to date and protected with the various layers of security we’ve already implemented are doing well in evading any successful intrusions.

It is doubtful that you will notice and issues with your server, applications, or web activities. However, if you do find any anomalies with any operation, please let us know immediately.

We are posting updates on Linkedin Facebook and Twitter

Details of attacks:

Robotic attempts using Brute Force Attacks and Penetration Scans are repeatedly attempting to bypass security measures to gain access to your system, unsuccessfully. Our security system is logging these events, which all originate from various IP addresses out of the Russian territory.

An example of the brute force attack entry is below:

Log Name:      Security
Source:        Microsoft-Windows-Security-Auditing
Date:          7/10/2020 8:47:26 AM
Event ID:      4625
Description:An account failed to log on.
Account For Which Logon Failed:
Account Name:                 ADMORRIS (they are using random usernames)
Failure Information:
Failure Reason:                 Unknown user name or bad password.
Network Information:
Source Network Address:             92.63.194.61 (This IP belongs to the Russian Federation territory)

Latest posts

Claude vs ChatGPT Business Comparison
June 23, 2025

Claude vs ChatGPT Business Comparison

This in-depth comparison guide analyzes Anthropic's Claude and OpenAI's ChatGPT from a business perspective, helping enterprises make informed AI platform decisions. The article covers feature comparisons, pricing analysis, security considerations, industry-specific recommendations, and includes interactive tools like a decision framework and ROI calculator. Claude excels in analytical reasoning and compliance-heavy environments, while ChatGPT dominates in creative content and integrations. The guide provides practical implementation strategies and real-world scenarios to help businesses choose the platform that best aligns with their strategic objectives and operational requirements.
Meta and Yandex Betrayed User Trust: A Privacy Professional's Take
June 19, 2025

Meta and Yandex Betrayed User Trust: A Privacy Professional's Take

Meta and Yandex deliberately circumvented Android privacy protections through sophisticated tracking methods that collected detailed user data from millions of websites. Using techniques like "SDP munging," they created a web-to-app pipeline that defeated incognito mode, cookie deletion, and privacy settings. Even more concerning, similar techniques could potentially affect iPhone users as well. Both companies only stopped after being publicly exposed by researchers. At ITECS, we're working with partners to help clients protect against these unethical practices and advocate for genuine privacy protection.
The Hidden Threat: How Rogue Communication Devices in Solar Inverters Could Bring Down the Power Grid
June 19, 2025

The Hidden Threat: How Rogue Communication Devices in Solar Inverters Could Bring Down the Power Grid

This investigative article exposes the discovery of undocumented communication devices hidden in Chinese-made solar inverters, creating unprecedented vulnerabilities in global power grids. The piece provides real-world attack scenarios from a business owner's perspective, analyzes the broader cybersecurity implications of hardware-level supply chain attacks, and offers actionable guidance for organizations to protect their infrastructure. With over 200GW of vulnerable capacity and the ability to compromise grids with less than 2% of inverters, this threat represents a critical national security issue requiring immediate attention from businesses and governments worldwide.