In April, our main priority was to work on WEDOS Global and individual services. This is the largest and most costly project in the history of WEDOS, so the priorities of the individual departments correspond to this.
Continue reading “WAF report from WEDOS Global Protection for April 2023”
In March, testing of the Web Application Firewall (WAF) rules continued. We had already reached the stage that WAF was automatically deployed for all newly added sites on WEDOS Global Protection and we were slowly getting ready to deploy it for everyone.
Continue reading “WAF report from WEDOS Global Protection for March 2023”
In February we deployed a new WordPress filter on our wedos.cz website. This has a number of pre-set rules that automatically block known attack attempts and vulnerability scanning on WordPress installations. In the future, it should replace the classic WAF (Web application firewall), which is now an essential part of all WordPress websites.
Continue reading “WAF report from WEDOS Global Protection for February 2023”
Thanks to central log monitoring, we keep a detailed track of all traffic that goes to our customers’ websites for LowCost, NoLimit, WebSite and WMS services. We can find those under attack very quickly and hide them behind WEDOS Global Protection (if they use our DNS). Most of them are L7 attacks with a large number of requests (someone is simply calling your site with tens to hundreds of thousands of requests per minute). However, the number of SQLi attacks has been increasing in recent days.
Continue reading “We have seen an increase in SQLi attacks in the last few days, how WEDOS Global Protection can help us with this”
Today we have for you a sample DDoS attack on the application layer (L7), which was directed to the websites of one of our customers several times a week. It was interesting that the attack always started at 7:00 in the morning.
Continue reading “WEDOS Global Protection in action – L7 attacks daily at 7:00 am sharp”
During the month of March, we saw two major phishing campaigns targeting our customers. The goal was to gain access to customer administration and email boxes. Thanks to the proactive approach of our customers, we were able to monitor both of these campaigns in detail and prevent the misuse of services by customer accounts that fell for cyber fraudsters.
Continue reading “Phishing campaigns and what to watch out for”
In recent weeks, cyberspace has been a war zone. Of course, not everything is Russia’s fault. The current chaos is also being exploited by a number of organized groups, so we are seeing more phishing, application layer attacks with extortion, and traditional DDoS attacks. But let’s not forget that Russia demonstrated its new HermeticWiper data-erasing malware early in the war. It quickly spread beyond Ukraine. It can affect you too. So our challenge still stands – back up your data to yourself wherever you have it!
Continue reading “Strongest DDoS attack of 2022 rewrites last year’s record”
On the night of 18.02.2022 to 19.02.2022, we experienced the strongest DDoS attacks on our infrastructure since April 2021, when we were hit by probably the strongest attacks in the history of the Czech Internet. Back then, for a brief moment, it managed to clog three 100 Gbps routes. This time it wasn’t so much about power but length, and apart from a few customers, no one noticed the attacks.
Continue reading “February night DDoS attacks exceeded 133 Gbps, peaked at 300 Gbps”
We publicly condemn the invasion of Ukraine by Russian armed forces, which is currently accompanied by strong cyber-attacks by Russia.
The current war is not only a war of arms, but it is also a cyber war that can affect you. We have made the following key recommendations:
Continue reading “The ongoing cyber war may affect you too, get ready for it!”
Last month, we showed you in the article “DDoS extortion cases on the application layer are starting to appear ” how the extortion and subsequent DDoS attack on a customer’s website takes place. We know that these cases are gradually increasing, but the pace is accelerating unpleasantly. In addition, we can see from the analysis of logs that attackers are trying to mask their attacks better, trying new methods and looking for the limits of protection.
Continue reading “Two more examples of application layer attacks on our customers”