|
Post by tickingmask on Nov 23, 2017 15:03:57 GMT
This is a bit weird. My firewall has started sending an 'Intrusion Alert' notification every time I come on to this website. This is a typical example:
Attack Name: Port Scan Attacker IP: 23.36.216.126 Attacked Port: 8012 Attacked Port: 8015 Attacked Port: 8016 ... etc.
The attacked ports are different each time, but the two attacker IP addresses are consistently 23.36.216.126 and 104.82.134.190. They appear to take turns!
I think (hope) my firewall is blocking these attacks - at least it reports that it is - but it's a bit concerning nonetheless. Is this happening to anyone else, and does anybody know what is going on?
|
|
|
Post by deembastille on Nov 23, 2017 15:23:42 GMT
what browser are you using?
|
|
|
Post by tickingmask on Nov 23, 2017 15:27:37 GMT
what browser are you using? Firefox.
|
|
|
Post by deembastille on Nov 23, 2017 16:22:42 GMT
What is everyone's obsession with Mozilla Firefox. That's your problem right there.
Surprisingly, Microsoft Edge and Google Chrome are very safe and reliable.
Get rid of Mozilla Firefox and you may have to take your computer in to get de-virused just in case. My anti virus is Kaspersky and I have had very little problems that I could not handle.
|
|
|
Post by Catman on Nov 23, 2017 16:53:01 GMT
Catman uses Firefox and has never seen this.
|
|
|
Post by deembastille on Nov 23, 2017 16:56:08 GMT
You are lucky catman. How is your anti virus?
|
|
|
Post by tickingmask on Nov 23, 2017 17:06:49 GMT
What is everyone's obsession with Mozilla Firefox. That's your problem right there. I doubt that's the entire problem since it seems to happen only when I come to this website. Is somebody keeping tabs on my activity here? And an attempted port scan doesn't sound like a virus problem. If I had a virus that let an intruder have his evil way with my computer, then I wouldn't be getting blocked intrusion alerts, would I?
|
|
|
Post by Catman on Nov 23, 2017 17:22:57 GMT
Both IP addresses trace back to Akamai Technologies which provides cloud services.
|
|
|
Post by tickingmask on Nov 23, 2017 18:22:41 GMT
Both IP addresses trace back to Akamai Technologies which provides cloud services. Hmmmm... interesting, thanks. Never dealt with them, as far as I know.
|
|
|
Post by Admin on Nov 27, 2017 18:31:12 GMT
There are no intruders on this website.
|
|
|
Post by tickingmask on Nov 27, 2017 19:48:25 GMT
I would not worry about it. It's unlikely some hacker is targeting you specifically especially if your more of the average person like the rest of us. I am using Windows 10 Fall Creators Update (i.e. build 16299.xx (which was released Oct 17th)) and the built in Windows Defender Anti-Virus along with RansomFree (i.e. ransomfree.cybereason.com/ ; which is free software that specifically blocks Ransomware as it does not rely on definition updates like typical anti-virus software does to detect malicious activity but instead detects it based on the way it behaves. it claims it can block 99.9%+ of Ransomware) and chances are ill be fine. just be careful on what you install on your computer etc as that alone should keep your chances of a virus infection and the like to a minimum. but i like to have that extra protection from Ransomware because while i probably won't get hit with it, it's nice having that extra layer of security and it takes minimal resources on your system with RansomFree. basically Ransomware is one thing i definitely would not want to get hit with because it locks down basically all of your files and forces you to either lose the data or pay the $$$ to get them back pretty much. with Firewalls... the built in Windows 10 one is good enough. plus, i am behind a router which is a hardware firewall. deembastille One could argue the other way around in that since Chrome is the dominate browser it will be more targeted by shady people. kinda like how people say Linux is more secure than Windows but i am confident that's largely because Windows is used by the vast majority of people so not many even care to target Linux in the first place. so it's security through obscurity with Linux. either way, i would not expect whether someone uses Chrome/Firefox or a browser by Microsoft to be any significant difference between the two in your general safety online. chances are if you get infected it's user error (i.e. they let something run that they should not have) a large portion of the time. also, no one is really obsessed with Firefox because Chrome is the dominate browser by a solid margin. Firefox only has about 7-10% of the browser market where as Chrome has roughly 50%. so those still using Firefox are likely using it because they like it more than Chrome, like myself basically. p.s. for the record... I use Pale Moon x64 for my browser which is pretty much a Firefox variant. Thanks for the tips! I'll check out Ransomfree for sure, since ransomware is the one thing that most scares me shitless and I'm forever taking backups. I used to use Chrome, but like you try to avoid dominant browsers because they are most likely to be targeted. But some things don't work with Firefox, so I end up having to resort to Chrome or even (gasp!) Internet Explorer.
|
|
|
Post by tickingmask on Nov 27, 2017 19:49:27 GMT
There are no intruders on this website. I'll take your word for it! Actually the intrusion alerts have now stopped, so maybe they've given up. Or have managed to break in...
|
|