Cyberstorm from Argentina
Anita Batari

Cyberstorm from Argentina

Two days ago storm clouds of cyberwar has reached our server from Argentina. In this article, we will share you some details about the attack. 22nd November started as a usual day. Until the afternoon nothing strange happened, then at about 5 o’clock a heavier request flood reached our servers, which has been increased until 7 o’clock, and stayed really high. As you can see on the chart below, the average request number has been doubled compared to numbers from a few hours before and even tripled compared to the result from a day ago. The numbers are decreasing, because lots of the IPs r...
Read more
What should you know about honeypots and proactive threat detection?
Nikolett Hegedüs

What should you know about honeypots and proactive threat detection?

Honeypots are a form of proactive threat detections. Proactive threat detection is the next step in improving an organization’s security posture. It has many significant advantages e.g. it provides information about the different kinds of threats attacking the organization and the possible vulnerabilities. It works like a trap A honeypot is a monitored resource that serves as a trap or a decoy against an attack or a threat. It is a security tool that helps to prevent, detect and to gather information about IT security issues. It prevents the threat from compromising its intende...
Read more
New improvements at BitNinja - HTTPS solution
Nikoletta Szabo

New improvements at BitNinja - HTTPS solution

In this article, we would like to summarize our recently released developments, which impact the daily life of our clients. First of all, ... TheHTTPS Captcha: If you enable this feature in your agent, BitNinja will be able to present a Captcha on HTTPS. This will make the IP removal from our greylist possible just by one click not only on HTTP protocol but also on HTTPS. What results can be achieved by using it? Less complaint from your customers about the failure of removal, resulting in a lower load on your support staff Lower false-positive rate How does it work? T...
Read more

Our port Honeypot module is out of Beta

Nikoletta Szabo
We are happy to announce that our developers officially released the port honeypot module. The port honeypot is a perfect way to fight against zero-day attacks and many of our customers are satisfied with it because the module catches and entraps hackers who attempt to break into or scan their servers making them aware of the incoming malicious traffic. The module sets up 100 honeypots chosen randomly from the 1000 most commonly used ports and is able to detect malicious port scanning conducted by hackers.For example, it gets installed on a port where usually there should not be in...
Read more

Port HoneyPot is ready for action

Viktoria Vereb
A long time ago, in a galaxy far, far away … Ohh wait, it’s just happening. Yeah, one of the most anticipated ninja modules, the ‘gorgeous’ Port Honeypot has been released.  I know what you are thinking now “How can it be gorgeous? But seriously, this is about a security function”.  Let me introduce you this sexy component of the ninja protection, even Winnie the Pooh can’t say No to it. More about Port Honeypot This is a general honeypot module. After activating this module will set up 100 honeypots on your server on random ports chosen from the 1.000 most popular ports. I...
Read more

Release note on BitNinja 1.7 | OpenVZ/Virtuozzo support

Boglarka Angalet
Right after HostingCon, we are full of newer and newer function ideas to BitNinja. But now we made something ready for you, that has been promised for some weeks. Enjoy! Features and fixes IPfilter module has been completely refactored Now we have a basic support for OpenVZ/Virtuozzo based VPS DoS Detection has been boosted, now it’s even faster than it used to be Some minor fixes in CaptchaHTTP Fixes in DataProvider module SenseWebHoneypot fixes   Auto-release will be rolled out on Tuesday. Automatic updates are scheduled for Tuesday. But if you can’t w...
Read more

Fix your Shellshock bug to keep your server alive

Boglarka Angalet
Did you hear about the Shellshock bug on bash Unix shell? There hasn’t been such a scandalous bug since Heartbleed that has caused such a big mess among server owners. A series of attacks on websites and servers using the serious Shellshock bug was spotted a few days ago. Millions of servers use software that is vulnerable to the bug, which lets attackers run commands on their system. Evidence of the scanning and attacks came from honeypots – just like the ones that we use. These are computers that have been set up to look vulnerable but which catch inform...
Read more