Security researchers worldwide are warning of a large-scale brute force attack underway, using nearly 2.8 million IP addresses to attempt to guess login credentials for a variety of network devices, including those from Palo Alto Networks, Ivanti, and SonicWall.
A brute force attack occurs when a threat actor attempts to log in to an account or device multiple times using multiple usernames and passwords until they find the correct combination. Once they have the correct credentials, they can take control of the device or gain access to the network.
According to a new report from threat monitoring platform The Shadowserver Foundation, there has been a brute force attack going on since last month, using nearly 2.8 million source IP addresses per day to carry out the attacks.
The majority of those IP addresses (1.1 million) come from Brazil, followed by Turkey, Russia, Argentina, Morocco, and Mexico. But overall, there are a wide range of countries involved.
The primary targets are edge security devices such as firewalls, VPNs, gateways, and other security components, which are often directly connected to the internet to support remote access.
The devices carrying out these attacks are mainly routers and IoT devices from MikroTik, Huawei, Cisco, Boa, and ZTE, which are often compromised by large-scale malware botnets. The Shadowserver Foundation confirmed that this activity has been going on for some time, but has recently suddenly increased in scale.
ShadowServer also said that the attack IP addresses were distributed across multiple networks and Autonomous Systems (AS), and were likely a botnet or a residential proxy network-related operation.
Residential proxies are IP addresses assigned to individual customers by Internet Service Providers (ISPs), making them attractive to cybercriminals, data collection, geo-restriction bypass, advertising verification, online transactions, and more.
These proxies route internet traffic through residential networks, making users appear like regular family members instead of bots, data collectors, or hackers.
Gateway devices like those targeted in this operation can be used as proxy exit nodes in residential proxy operations, routing malicious traffic through an organization's corporate network.
Measures to protect devices from brute force attacks
To protect edge devices from brute force attacks, the following steps should be taken:
Additionally, keeping your device updated with the latest firmware and security patches is important to eliminate vulnerabilities that attackers can abuse to gain initial access.
Do you remember how many times you installed an app, quickly tapped Allow on the prompt asking for photo access, and moved on without a second thought?
These days, users can pay to protect all their devices – whether it’s a PC, Mac, or smartphone. But with so many options on the market today, it can be hard to know where to start. Here’s a list of the best internet security suites available today.
Microsoft Office has supported ActiveX for years as an option for document extensibility and automation, but it's also a serious security vulnerability.
When you turn this feature off, only registered accounts can use your Chromebook. It's super simple to do.
Security and privacy are increasingly becoming major concerns for smartphone users in general.
The world-famous cybersecurity company Fortinet has just officially confirmed that a large amount of user data was stolen from the company's Microsoft Sharepoint server, and was posted on a hacker forum early in the morning of September 15.
A new strain of ransomware called Qilin has been discovered using a relatively sophisticated, highly customizable tactic to steal account login information stored in the Google Chrome browser.
Some high-end smartphones are now gradually moving users from password and fingerprint security authentication to more convenient facial recognition technology.
Gmail just turned 21, and Google chose to celebrate its special birthday by launching a very meaningful feature for users: an extremely easy and useful automatic email encryption feature.
Discover what a SIM PIN is, its security features, and why you should use it for your mobile device. Learn more about SIM PIN and enhance your security today.
Learn how to enable two-factor authentication for your Blizzard account, and use the Blizzard Authenticator app or SMS Protect to log in securely. Protect your favorite games like World of Warcraft, Overwatch, Hearthstone, or Diablo 3.
The article tested 3 different passwords with an open source password cracking tool to find out which method really works when it comes to password security.
It can be said that the photo library and message archive are two of the most private locations that need to be tightly secured on Android smartphones and tablets.
To ensure better security, devices running Android 10 and above will use random WiFi MAC addresses by default.
Tired of Microsoft Teams crashing due to msvcp140.dll missing errors? Discover proven, step-by-step fixes to restore smooth video calls and chats. Works on Windows 10/11 with latest updates.
Tired of Microsoft Teams Meeting ID not working? Get instant fixes for join errors on desktop, mobile, or web. Step-by-step troubleshooting with latest updates to rejoin meetings seamlessly. No tech skills needed!
Struggling with Microsoft Teams "Welcome Error" startup loop? Discover step-by-step fixes to resolve the issue quickly. Clear cache, reset app, and more for seamless Teams experience. Updated with latest solutions.
Stuck with Microsoft Teams "Disabled Error" Account Blocked? Discover proven, step-by-step solutions to fix the issue fast, regain access, and prevent future blocks. No tech skills needed!
Master how to use Microsoft Teams Copilot for AI-powered meetings. Step-by-step guide with latest tips to generate recaps, answer questions, and boost productivity effortlessly. Transform your Teams experience today!
Master Microsoft Teams Breakout Rooms with this beginner-friendly tutorial. Step-by-step guide to creating, managing, and optimizing breakout rooms for dynamic 2026 meetings and workshops. Boost engagement now!
Stuck with Microsoft Teams Recording Save Error? Get instant, step-by-step fixes for saving recordings effortlessly. Proven solutions for all common issues – no tech skills needed!
Discover how to create a Wiki page in Microsoft Teams effortlessly. This ultimate guide covers step-by-step instructions, tips, and best practices to boost your team's knowledge sharing and productivity. Perfect for beginners!
Stuck on Microsoft Teams "Error S" screen? Discover proven, step-by-step solutions to fix Microsoft Teams Error S fast. Clear cache, restart, update & more for seamless teamwork. Works on latest versions!
Struggling with Microsoft Teams proxy error on Windows 10? Discover step-by-step fixes to resolve proxy authentication issues, connection failures, and more. Get Teams running smoothly in minutes with our expert guide.
Tired of Microsoft Teams Town Hall Event Error ruining your events? Get step-by-step fixes for scheduling, access, and registration issues. Restore seamless virtual town halls today with our ultimate guide.
Discover the simplest way to download Microsoft Teams for Mac, MacBook Air, and MacBook Pro. Step-by-step instructions, system requirements, and troubleshooting tips for seamless installation in the latest version. Get started now!
Stuck with Microsoft Teams Web Login Error? Get instant fixes for common issues like "Something went wrong" or login loops. Step-by-step guide to resolve Teams web login problems and stay productive. Updated with latest browser tweaks.
Struggling with Microsoft Teams Error 657rx Update Failed? Discover step-by-step fixes, from quick restarts to advanced troubleshooting, to get your Teams app updated and running smoothly in minutes. No tech skills required!
Tired of Microsoft Teams "VDI Error" Lag freezing your video calls? This ultimate guide delivers step-by-step fixes for VDI environments like Citrix and VMware. Optimize performance now for lag-free collaboration!
