Digital Ocean – N1 Source of Attacks and Probes

For the last six months Digital Ocean has become N1 source of continious generic or WordPress specific attacks.

In the past we have used their abuse reporting system. But now it is impossible do to so, because we must spend all day reporting each and every abuse and attack. And it is very hard to follow IP changes coming from their “Cloud” services.

The vast majority of attacks come from Singapore IPs (according to AbuseIPDB) but also from other countries. And from AbuseIPDB we see that most of the attacks are never resolved or new ones appear from the same IPs.

We are sorry to see what Digital Ocean has become …..

A small sample of last days attacks:

https://www.abuseipdb.com/check/137.184.151.122
https://www.abuseipdb.com/check/192.81.214.168
https://www.abuseipdb.com/check/174.138.19.227
https://www.abuseipdb.com/check/137.184.101.38
https://www.abuseipdb.com/check/159.89.1.19
https://www.abuseipdb.com/check/167.71.216.37
https://www.abuseipdb.com/check/204.48.26.148
https://www.abuseipdb.com/check/143.244.171.192

Read what you MUST block:

2 Comments

    1. Not possible, Digital Ocean has a huge ammount of IPs and not always a “host name” that you can block.

      Keep reading this blog post and monitor the IPs we are blocking. Those IP ranges can be easily be blocked via your Cpanel.

Leave a Reply

Your email address will not be published. Required fields are marked *