Attempts continue daily trying to hack my web site. On multiple occasions I have approached IP address holder via the WHOIS service to complain and received bland reassurances. An example of the recent IP address is below the table. Once a host has been established from where the hacking attempt is coming from, you then have to fill in the contact form or abuse form for the host company. A few days later you’ll get a bland reassurance back and the hacks continue sometimes from the same IP address. In the table below, I have listed some of these hacking attempts over the last month. I get 50-100 every 24 hours. I’ll probably get more now.
UPDATE
Nothing back from web sites about IP addresses and in last 48 hours 1-3 Aug 2023 I’ve logged over 500 attempts. Waste of bandwidth….
Purpose of Trying To Hack My Web Site
It’s unclear why these bots or their instigators are trying to hack my site. The site has reputational value to me, but has no e-commerce element except links to book sites. It does not hold membership lists of thousands – in fact no members with no private data, except cookie lists – see privacy policy. It may be fun but it’s just a pain and so far unsuccessful. I’m not saying what my user account name is for admin access. Nor am I giving out a password/phrase but it’s strong and then there is 2FA, Two-Factor Authentication. That means these brute force attempts get nowhere even if they did get my username and password.
It’s all a colossal waste of time and resources for all parties. Having worked in the cyber security field, I know how much effort this costs for a company and what sort of reward these criminals are after. The databases or monetary ransom from encryption, but again why my site?
Attempts continue daily trying to hack my web site. On multiple occasions I have approached IP address holder via the WHOIS service to complain and received bland reassurances. An example of the recent IP address is below the table. Once a host has been established from where the hacking attempt is coming from, you then have to fill in the contact form or abuse form for the host company. A few days later you’ll get a bland reassurance back and the hacks continue sometimes from the same IP address. In the table below, I have listed some of these hacking attempts over the last month. I get 50-100 every 24 hours. I’ll probably get more now.
UPDATE
Nothing back from web sites about IP addresses and in last 48 hours 1-3 Aug 2023 I’ve logged over 500 attempts. Waste of bandwidth….
Purpose of Trying To Hack My Web Site
It’s unclear why these bots or their instigators are trying to hack my site. The site has reputational value to me, but has no e-commerce element except links to book sites. It does not hold membership lists of thousands – in fact no members with no private data, except cookie lists – see privacy policy. It may be fun but it’s just a pain and so far unsuccessful. I’m not saying what my user account name is for admin access. Nor am I giving out a password/phrase but it’s strong and then there is 2FA, Two-Factor Authentication. That means these brute force attempts get nowhere even if they did get my username and password.
It’s all a colossal waste of time and resources for all parties. Having worked in the cyber security field, I know how much effort this costs for a company and what sort of reward these criminals are after. The databases or monetary ransom from encryption, but again why my site?
Dear hackers give it a rest. Why not use your skills for the betterment of human life? Mind you with the endless efforts of Government agencies some of which have leaked into the open this is an ongoing battle. Hadn’t realised this comes 10 years after Snowden’s revelations.
Table of IP Addresses
WHOIS Trying to Hack My Web Site
Whois IP 152.32.189.117
The IP is registered to Hong Kong and UCloud. They have an abuse email hegui@ucloud.cn. I won’t hold out any hope of a response but I’ve tried.