When it rains, it pours.....
I have noticed a measurable up-tick in hack attempts over the last several weeks and it looks like they found a hole to worm through.
Problem & Cause:
At approx 1:30am CST this morning a multi-faceted attack began on our network. During the first several hours we experienced a large port scans and distributed brute force hacking attempts.
During this phase of the attack, a hosted client system was compromised.
This system was then used as part of a larger Denial of Service attack. Our firewall prevented this attack from extending outside our network, but could do nothing to stop the attack on our internal network.
Due to the nature of the attack, existing monitoring systems were not detecting system outages as they are on the same network.
When we became aware of a problem in service we immediately began taking action. Halting the attack and remediating the affected system took approximately 2.5 hours.
Long term remediation:
Periodic security scans of ALL customer systems and sites will be performed. The scans will use some of the same tools used by the hacker community in order to detect faulty code, bad passwords and other security issues. Upon notification of an issue, the customer is expected to remediate and report the actions taken in a timely fashion.
Future Reality Solutions will also be re-evaluating the security posture of all components on our network and will be implementing additional measures to help prevent similar issues in the future.
President, Future Reality Solutions
NO IDEA WHAT YOUR ON ABOUT.
But I am sure its all good stuff.Thanks for keeping the gremlins at bay.personally I find a Sprig of Garlic works well.
at least it seems to keep all the Crocs,Wild Buffalo.Lions,and Tigers Away from Kilsyth.
Ron, layman's version:
somebody (or somebodies) tried to hack into the servers and instituted a Denial of Service attack, which means an automated process that sends huge numbers of requests to the server (like huge numbers of users trying to access at exactly the same time), causing it to collapse under the weight of requests. It couldn't handle all the requests.
This (Denial of Service attack) is often done using compromised PCs, where the baddies have managed to get a virus installed and taken control. Such an attack is difficult to deal with and, usually, the best way (sometimes the only way) is to take the servers offline for a period. If the attack is from a dedicated IP Address range (not the case with compromised PCs) then that range can be blocked and that will stop an attack dead in it's tracks, till teh hacker gets another IP Address range (not that easy).