I started a company!
“What? Huh? Why?”
Those are some of the many questions I was asking myself. Simply… Looking to challenge the brain in different ways than what I’m normally doing.
How it began – In my personal time while trying to secure my own personal hosted infrastructure, I was noticing that there wasn’t an efficient or effective way to block bad threat actors (nasty hackers) on the Internet.
The typical (tedious) approach has always been:
The problem with this approach is that you end up getting stuck in a game of whack-a-mole. Who do you think wins? Trick question – it’s not you!
I put a different idea together – what if bad threat actors run their hacking world like a business and focus on cost optimization and automation. Novel idea right?
How does this apply to what I do? Well if I were to run a business like theirs, I would figure out how to “copy/paste” my attacks in creative ways. To do this, I would choose a (cheap) hosting provider that has resources that I can use for my desired purposes. Once the hosting provider is identified, I’m going to figure out ways to spin up new resources in a quick manner in a different location (i.e. automation).
New Resource + New Location = New IP Address To Attack From
Now that I know this, let the hacking begin!
Do you see how the game of whack-a-mole starts?
What does my company do?
I have a few products available now, but the one product that solves the above problem is a product called Molasses Masses.
How does it work?
Rather than blocking on a per-IP basis, I get all the subnets for that hosting provider that the hacker is using and then block those. The idea is that remote connections coming to my/your hosted services, should not come from other hosting providers. It should be from people like you reading this article!
Now it’s possible that you or your business partners get caught up in the block list – no problem! You can exclude your own and/or business partner subnets from the specifically curated list of subnets that you download.
How effective it this?
I’ve seen a reduction of attacks of up to 90%* from all my honeypots on the Internet.
Why would you use this?
Got remote users that need to VPN into your organization?
Got hosted services that should be accessed from actual users, and not random bots sitting in hosted environments?
Then this is the product for you!
Integrations available?
Very simply, It’s a flat text file of curated subnets that you can use in your own policies..
These are the supported platforms available today to consume my product:
Curious to test it out? 7-day free trials available.
Use discount code MM2026 to snag a 20% discount on checkout for the first 50 customers 🙂
* As with all things in life – your mileage may vary. You might have a different environment compared to mine which gives different results. #AntiHacking #BotMitigation #BruteForceProtection #CiscoFTD #CloudSecurity #CyberSecurity #Cybersecurity #DDoSProtection #Fortigate #Honeypot #InfoSec #IPBlocking #MolassesMasses #NetworkSecurity #PaloAltoNetworks #security #Shorewall #SubnetFiltering #SysAdmin #technology #threatIntelligence #VPNTrust #ZeroTrust
IP Blocking the UK Is Not Enough to Comply with the Online Safety Act
#HackerNews #IPBlocking #OnlineSafety #Act #Compliance #Cybersecurity #UK #InternetPolicy
Academic research finds economic, technical and operational harms from Italy’s Piracy Shield
Walled Culture first wrote about Piracy Shield, Italy’s automated system for tackling alleged copyright infringement in the streaming sector, two years ago. Since then, we have written about the serious problems that soon emerged. But instead of fixing those issues, the government body that runs the scheme, Italy’s AGCOM (the Italian Authority for Communications Guarantees), has extended […]
#agcom #albania #cdn #dnsBlocking #eu #fqdn #google #ipBlocking #ipv4 #italy #leasing #nunnery #overblocking #piracyShield #streaming #telecomItalia #tv
LaLiga's Efforts to Combat Piracy Lead to Overblocking Issues in Spain
The ongoing issue of LaLiga's anti-piracy measures in Spain has been the subject of controversy, especially regarding overblocking of legitimate websites. LaLiga, tasked with fighting online piracy, has implemented a judicially supervised blocking order aimed at blocking pirate IPTV services. Howeve... [More info]
I came across the #Fail2Ban #docker image from #linuxserverio and thought to myself that it's finally time to set up Fail2Ban. I admit i never used it before and it was a bit difficult to add it to my #playbook as all of my #servers have different services and therefore different #logfile paths, but that's nothing #jinja #templating can't fix.
Now that i've got #Discord notifications for banned #IPs, it's time to work on actual #IPblocking. I also want to use the #IPComplaint and #AbuseIPDB actions as i really like the idea of reporting abuse (even though i have no idea how effective that may be).
I may also want to replace the discord #webhook with #email notifications later as that's mostly the reason i've set up a #mailserver ( #stalwart ) in the first place.
I mean, most of my services are only accessible from #tailscale or my #homenetwork, but since #Ansible makes it so much easier to apply higher standards, i just can't resist. My #homelab is changing every day and i think setting up additional #security, even though i don't need it yet, is never a bad idea.
#networking #badactors #firewall #automation #linux #selfhosting #homeserver
В США работает!
https://www.tapbit.com/auth/PNHQGSK
На данный момент я не смог найти подробностей или официальных подтверждений о проблемах, связанных с хакерской атакой на биржу TapBit, или информации о блокировке украинских IP-адресов. Это может указывать на недостаток публичной информации либо на неполноту данных.
Для точности и проверки лучше:
1. Проверить официальные источники TapBit (сайт биржи, социальные сети).
2. Следить за новостями в специализированных СМИ о криптовалютах.
3. Поискать отчёты пользователей на форумах и платформах, таких как Twitter или Reddit, где часто обсуждаются инциденты такого рода.
Странная история...
ЗЬІ: для тестирования ввода-снятия средств, можете задонатить пару коинов сюда:
PNy158omC9ibf8mj7RsMqJ5YjCqJvEicGp
ЗЗЬІ: наблюдается нехарактерное поведение не ясно с чем связанное.
Донат новости:
PDQmXtWJfd8f6fMtwaxzCuqvLpoN3KbS4o
Аккаунт:
https://pocketnet.app/pureaceton?ref=PDQmXtWJfd8f6fMtwaxzCuqvLpoN3KbS4o
Пост:
#TapBit #CryptoSecurity #ХакерскаяАтака #IPBlocking #CyberThreats #CryptoExchange #TapBitHacking #DigitalSecurity #BlockchainNews #CryptoUkraine #CyberAttack #CryptoSafety #УкраинаКрипто #КиберБезопасность #CryptoAlerts #ExchangeIssues #Криптобиржи #CryptoThreat #HackAlert #TapBitExchange
Tapbit cryptocurrency Exchange - where you can buy and sell Bitcoin,Ethereum,shiba inu coin and other top crypto currencies; You can enjoy the lowest trading fees and reliable service here; 40,000,000 usdt insurance fund to protect your digital assets. Start trading now!
#Development #Pitfalls
The challenge of IP reputation · Trusting traffic based solely on IP addresses is risky https://ilo.im/157rcv
_____
#WebDev #Hosting #DNS #NAT #IpAddress #IpGeolocation #IpBlocking
Tarnkappe.info
Personal Blog
Morgan ⚧️
Hacker News
Walled Culture
fearow2498 at KillBait
aaron ~# 
Pure Acetone
Inautilo