Security researchers worldwide are warning of a large-scale brute force attack underway, using nearly 2.8 million IP addresses to attempt to guess login credentials for a variety of network devices, including those from Palo Alto Networks, Ivanti, and SonicWall.
A brute force attack occurs when a threat actor attempts to log in to an account or device multiple times using multiple usernames and passwords until they find the correct combination. Once they have the correct credentials, they can take control of the device or gain access to the network.
According to a new report from threat monitoring platform The Shadowserver Foundation, there has been a brute force attack going on since last month, using nearly 2.8 million source IP addresses per day to carry out the attacks.
The majority of those IP addresses (1.1 million) come from Brazil, followed by Turkey, Russia, Argentina, Morocco, and Mexico. But overall, there are a wide range of countries involved.
The primary targets are edge security devices such as firewalls, VPNs, gateways, and other security components, which are often directly connected to the internet to support remote access.
The devices carrying out these attacks are mainly routers and IoT devices from MikroTik, Huawei, Cisco, Boa, and ZTE, which are often compromised by large-scale malware botnets. The Shadowserver Foundation confirmed that this activity has been going on for some time, but has recently suddenly increased in scale.
ShadowServer also said that the attack IP addresses were distributed across multiple networks and Autonomous Systems (AS), and were likely a botnet or a residential proxy network-related operation.
Residential proxies are IP addresses assigned to individual customers by Internet Service Providers (ISPs), making them attractive to cybercriminals, data collection, geo-restriction bypass, advertising verification, online transactions, and more.
These proxies route internet traffic through residential networks, making users appear like regular family members instead of bots, data collectors, or hackers.
Gateway devices like those targeted in this operation can be used as proxy exit nodes in residential proxy operations, routing malicious traffic through an organization's corporate network.
Measures to protect devices from brute force attacks
To protect edge devices from brute force attacks, the following steps should be taken:
Additionally, keeping your device updated with the latest firmware and security patches is important to eliminate vulnerabilities that attackers can abuse to gain initial access.
Do you remember how many times you installed an app, quickly tapped Allow on the prompt asking for photo access, and moved on without a second thought?
These days, users can pay to protect all their devices – whether it’s a PC, Mac, or smartphone. But with so many options on the market today, it can be hard to know where to start. Here’s a list of the best internet security suites available today.
Microsoft Office has supported ActiveX for years as an option for document extensibility and automation, but it's also a serious security vulnerability.
When you turn this feature off, only registered accounts can use your Chromebook. It's super simple to do.
Security and privacy are increasingly becoming major concerns for smartphone users in general.
The world-famous cybersecurity company Fortinet has just officially confirmed that a large amount of user data was stolen from the company's Microsoft Sharepoint server, and was posted on a hacker forum early in the morning of September 15.
A new strain of ransomware called Qilin has been discovered using a relatively sophisticated, highly customizable tactic to steal account login information stored in the Google Chrome browser.
Some high-end smartphones are now gradually moving users from password and fingerprint security authentication to more convenient facial recognition technology.
Gmail just turned 21, and Google chose to celebrate its special birthday by launching a very meaningful feature for users: an extremely easy and useful automatic email encryption feature.
Discover what a SIM PIN is, its security features, and why you should use it for your mobile device. Learn more about SIM PIN and enhance your security today.
Learn how to enable two-factor authentication for your Blizzard account, and use the Blizzard Authenticator app or SMS Protect to log in securely. Protect your favorite games like World of Warcraft, Overwatch, Hearthstone, or Diablo 3.
The article tested 3 different passwords with an open source password cracking tool to find out which method really works when it comes to password security.
It can be said that the photo library and message archive are two of the most private locations that need to be tightly secured on Android smartphones and tablets.
To ensure better security, devices running Android 10 and above will use random WiFi MAC addresses by default.
Tired of Microsoft Teams shortcut error preventing you from opening the app? Follow our expert, step-by-step guide with the latest fixes for instant resolution. Works on Windows, Mac & web – no tech skills needed!
Tired of Microsoft Teams Task Management Sync Error halting your workflow? Follow our proven, step-by-step fixes to resolve sync issues fast and restore seamless task collaboration. No tech expertise needed!
Struggling with Microsoft Teams Wiki Error Formatting? This step-by-step guide reveals proven fixes for common wiki tab issues, ensuring smooth editing and collaboration in Teams. Get back to productive wikis fast!
Struggling with Microsoft Teams installation error on Linux? Discover step-by-step fixes for Ubuntu, Fedora & more. Resolve dependency issues, crashes, and errors quickly with our ultimate guide. Get Teams running smoothly today!
Struggling with Microsoft Teams "Error Page" not loading? Get step-by-step fixes for desktop, web, and mobile. Solve Microsoft Teams Error Page issues quickly and resume seamless teamwork today.
Tired of Microsoft Teams "Error Screenshot" blocking your workflow? Get proven, step-by-step solutions to resolve screenshot errors in Teams instantly and boost productivity. No tech skills needed!
Tired of Microsoft Teams "Error U" User blocking your chats? Get proven, step-by-step fixes to clear cache, reset, and restore seamless collaboration instantly.
Unlock the precise locations of Microsoft Teams registry keys on Windows 11. Step-by-step guide to find, access, and safely tweak them for optimal performance and troubleshooting. Essential for IT pros and Teams enthusiasts.
Tired of Microsoft Teams "Training Error" Video Lag ruining your meetings? Follow our step-by-step guide with the latest fixes for smooth video calls—no more frustration!
Frustrated by Microsoft Teams "Error occurred" during sign-in? Discover proven, step-by-step fixes to get back online fast. Clear cache, reset app, and more for seamless login. Works on Windows, Mac & web.
Struggling with Microsoft Teams "Call Error" Disconnecting? Discover proven, step-by-step fixes for call drops, network issues, and more. Get back to seamless meetings fast with our expert troubleshooting guide.
Stuck in Microsoft Teams Error 2603 login loop? Get proven step-by-step fixes to resolve the issue fast and restore seamless teamwork. Clear cache, reset, reinstall – all covered!
Tired of Microsoft Teams voice call errors? Follow our step-by-step guide to troubleshoot no audio, echo, or call drops. Proven fixes for crystal-clear calls every time.
Struggling with Microsoft Teams "Workflows Error" in Power Automate? Discover proven, step-by-step fixes to resolve connection issues, permissions, and more. Get your workflows running smoothly today!
Tired of Microsoft Teams crashes, black screens, and sign-in loops? Unlock Reddit's most popular, proven fixes to resolve common Microsoft Teams errors quickly and get back to productive meetings. Step-by-step guides inside!
