Digital Ocean let's hackers go after home user modems


Nearly daily we put out information on the latest attacks observed so that companies can check their logs to see if they are being affected by malicious activity. Yesterday the SOC engineer on duty received reports of 3 different IP addresses all trying to leverage the same exploits against home and business routers owned by the telecom company. Upon researching and then going back and looking at historical data he was surprised that all of the attacks were originating from Digital Ocean and have been for quite some time. Since February we have been observing automated scripts and hacking and it appears as though Digital Ocean is allowing the activity to continue. Looking at Shodan.io shows that the problem has existed for quite a while longer.

One option is to just drop all of Digital Oceans traffic and if they keep allowing the activity, we may just have to do that on our distributed platform to protect our clients. It's hard enough to keep hackers at bay, let alone hosting and cloud providers.

#NETCORE #NetworkAttacks

36 views

Contact: (800)447-2150 Ext. 1        To contact Jigsaw simply send a message in our chat window!

  • Facebook - Black Circle
  • Twitter - Black Circle

© 2017-2018 Jigsaw Security Enterprise Inc.

Jigsaw Security Enterprise Inc is a SDVOSB - Service Connected Disabled Veteran Owned Small Business Jigsaw Security is an operator of WIMAX networks and is operating under license WQVC235 as a common carrier, non-common carrier and private communications operator. Jigsaw Security operates cable and satellite services. Courses may be provided by a third party authorized training partner in some cases. Some training is only available for cleared and US Citizens. Courses approved by the North Carolina Department of Public Safety Private Protective Services Board for licensing and CE credits. JPM program insurance is provided by an authorized Jigsaw Security Insurance Partner and is not underwritten by Jigsaw Security. For insurance information please contact our JPM program manager. Jigsaw Security operates a network through our NCBroadband brand.