jwz3d ago

It has become more frequent for someone to contact me saying "I can't access your sites from my phone / cable modem", and on the few occasions when they tell me what their IP is, it turns out that, yup, that IP did some extremely obvious AI scraper bullshit and got shitcanned for a month.

I have no way of knowing how often collateral damage like this happens, since by definition they aren't connecting to my site afterward. But anecdotally, telcos and cable companies...
https://jwz.org/b/yk8O

Show threadjwz
180 http req/sec. A *single botnet* has hit 1,052,380 distinct honeypot URLs in the last 24 hours. Source IPs from all over the globe.
9:57pmWeb
Show threadEric Vitiello5h ago
@jwz I've had one pounding one of my websites for the past two weeks. It went quiet yesterday though, so I'm hoping it’s over. I had started a count of the number of unique IPs, but after just a couple of days it was over 10000.
Show threadPeter Linss4h ago

@jwz at some point the best response is going to be BGP hijacking the command and control IPs for the residential proxy networks that route all this crap.

AS16509 is probably the best place to start (used by Bright Data).