Top 10 Hostile Web Hosting & Cloud Services for May 2019
After been hacked (via a vulnerable WordPress plugin named YUZO Related), we decided to change our security net and add an other layer of protection. That extra layer, that doesn’t depend on WordPress anymore, provides a huge amount of detailed statistics per month.
So here are the TOP 10 Toxic Web and Cloud Hosting services for May 2019: (per number of attacks)
- Cloud service “UK Dedicated Servers”, NL (IPs 188.8.131.52/20)
- Cloud service “Digital Ocean Inc”, NL & US (IPs 46.101.*.*, 184.108.40.206/16, 220.127.116.11/16, 18.104.22.168/18)
- Cloud service “GoDaddy.com LLC”, US (IPs 50.63.*.*, 50.62.*.*)
- Cloud service “OVH Systems”, CA & FR (IPs 22.214.171.124/15, 126.96.36.199/17,188.8.131.52/16, 184.108.40.206/22)
- Cloud service “CLOUD STAR”, EE (Estonia) (IPs 220.127.116.11/22)
- Cloud service “Amazon.com, Inc”, US (IPs 18.104.22.168/12, 22.214.171.124/14)
- Cloud service “SingleHop, Inc”, US (IPs 126.96.36.199/18)
- Cloud service “OVH Systems”, IT (Ips 151.80.*.*)
- Cloud service “O.M.C. C.C. LTD”, IL (Israel) (IPs 188.8.131.52)
- Cloud service “GMO-Z.com USA INC”, US (IPs 184.108.40.206)
All the above IPs executed hundreds of attacks and other probes for all kind of vulnerabilities. Let me add that the list is very long (around 5000 attacks total for May) and names like OVH, Amazon and Digital Ocean are repeated many times for different IPs and smaller attacks. Later this year, i will try to load the whole log to Excel and find a way to post some more statistics per company or per country etc etc.