Cloud Computing Dallas - Russian IP Attempted Hacks

August 22, 2024

Cloud Computing Dallas - Russian IP Attempted Hacks

We have detected a massive spike of brute force and script attacks originating from the Russian Federation assigned block of public IP addresses. Due to the scope of the attacks, we will need to block all IPs that are attached to Russian assets to protect your servers efficiently. Your network security and integrity is of our highest priority, and we are doing everything we can to stem these attacks; thus far, we have no evidence to show that your server was compromised. Keeping your systems up to date and protected with the various layers of security we’ve already implemented are doing well in evading any successful intrusions.

It is doubtful that you will notice and issues with your server, applications, or web activities. However, if you do find any anomalies with any operation, please let us know immediately.

We are posting updates on Linkedin Facebook and Twitter

Details of attacks:

Robotic attempts using Brute Force Attacks and Penetration Scans are repeatedly attempting to bypass security measures to gain access to your system, unsuccessfully. Our security system is logging these events, which all originate from various IP addresses out of the Russian territory.

An example of the brute force attack entry is below:

Log Name:      Security
Source:        Microsoft-Windows-Security-Auditing
Date:          7/10/2020 8:47:26 AM
Event ID:      4625
Description:An account failed to log on.
Account For Which Logon Failed:
Account Name:                 ADMORRIS (they are using random usernames)
Failure Information:
Failure Reason:                 Unknown user name or bad password.
Network Information:
Source Network Address:             92.63.194.61 (This IP belongs to the Russian Federation territory)

Latest posts

How to Deploy Self-Hosting DeepSeek-R1 Using Ollama Implementation Guide
April 19, 2025

How to Deploy Self-Hosting DeepSeek-R1 Using Ollama Implementation Guide

Our Self-Hosting DeepSeek-R1 Using Ollama guide provides organizations with a comprehensive technical roadmap for deploying AI models within their own infrastructure. From hardware selection and installation to performance optimization and security hardening, this guide covers the complete implementation process with expert insights at each critical phase. Learn how to select appropriate model sizes based on your hardware capabilities, implement web interfaces for user access, and properly secure your AI deployment. This guide demonstrates how organizations can leverage powerful AI capabilities while maintaining complete data privacy and control.
Read more
Shutup10 Privacy Settings Tool
April 14, 2025

Shutup10 Privacy Settings Tool

Anyone who has configured a new installation of Windows 10 has seen there are a large amount of privacy, location and performance settings in the operating system. The sheer amount of selections available to adjust can be discouraging to even an experienced IT professional. Considering the multitude of options available it can be difficult, if almost impossible, to find them again later on - much less to remember them all! Enter O&O Software’s humorously named O&O ShutUp10.
Read more
Scam robocalls pretending to be Apple
April 14, 2025

Scam robocalls pretending to be Apple

We've received reports that customers are receiving calls from a company claiming to be Apple informing them that their Apple ID has been compromised. The culprits are calling random numbers, mainly in the United States. If you follow their prompts to "secure your account" you'll be transferred to a call center in India who will then try to get as much personal information from you as possible; they will try to get your credit card information to charge a fee to secure the compromised account.
Read more