Cyber Security 101

Russian hackers are in the news a lot these days.  And with good reason – they may or may not have influenced the presidential election of the most powerful nation on Earth.

But there’s still a lot of mystery surrounding “Hackers.”  Are they all bad?  Who do they target?  How do they collect information?

Luckily, your favorite IT guru is here to spell it all out for you:

Hackers are not all bad.  The term originated in the 1960’s at M.I.T. to describe engineers who would “Hack” together different components from different systems that were not designed to work together.  There are 2 categories of hacker, White Hat, and Black Hat.  Many (most) hackers use their services for good meaning they are “White Hat.”  They help companies and government beef up their security through operations known as “Penetration testing.”  They find holes in the network security before the bad “Black Hat” hackers can find and exploit such holes.

Black hat hackers have 2 primary types of target:  “High Profile,” and “Low Hanging Fruit.”  If you work for Google, Microsoft, Amazon, IBM, the CIA, the FBI or Hillary Clinton, you are a High Profile target.   This means your data is extremely valuable, and therefore many hackers will be trying to break into your network to collect it.  Conversely, if you are an average person and own a computer, but don’t run security updates, or don’t update the firmware on your router, or disable your firewall, you are Low Hanging Fruit.  This means that while your data may not be very valuable, hackers will still be trying to use common methods of gaining control over your network to use it as a BotNet or to forward Spam Email messages.  They do not use the same resources to get Low Hanging Fruit as they do to get High Profile targets, because it’s not worth the effort, instead they are just trying to gain a foothold through well known exploits.

How do they collect information?  This varies depending on if the target is High Profile or Low Hanging.  High Profile targets will have teams of very experienced hackers trying every possible method of gaining access to a system, SQL injection, social engineering, even infiltration.  Low Hanging Fruit targets are often broken into because of negligence on the part of the IT person in charge of the network, because they forgot to run updates or turn on the firewall.

Of course, if you would like to beef up your security, and make sure your computer network isn’t picked up as Low Hanging Fruit, CALL US or EMAIL US to schedule a consultation today!

As an example of how prevalent hackers really are, I have included this website’s blocklist.  Since I started this site 7 months ago, hundreds of black hat hackers from across the globe have used common exploits to try to attack and gain control over my server (such as the well known xmlrpc.php attack)  They aren’t interested in my data, they just want to see if they can turn my page into an advertising site or part of a BotNet, they want to see if my server is Low Hanging Fruit.  As you can see, it’s quite a list!

IP: 185.158.113.23 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 185.158.113.23
No attempts have been made to access the site since this IP was blocked.
  • 278 hits before blocked
  • 0 blocked hits
  • Permanently blocked
IP: 163.172.223.210 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 163-172-223-210.rev.poneytelecom.eu
No attempts have been made to access the site since this IP was blocked.
  • 133 hits before blocked
  • 0 blocked hits
  • Permanently blocked
IP: 163.172.223.124 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 163-172-223-124.rev.poneytelecom.eu
No attempts have been made to access the site since this IP was blocked.
  • 162 hits before blocked
  • 0 blocked hits
  • Permanently blocked
IP: 163.172.223.100 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 163-172-223-100.rev.poneytelecom.eu
No attempts have been made to access the site since this IP was blocked.
  • 202 hits before blocked
  • 0 blocked hits
  • Permanently blocked
IP: 163.172.223.34 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 163-172-223-34.rev.poneytelecom.eu
No attempts have been made to access the site since this IP was blocked.
  • 163 hits before blocked
  • 0 blocked hits
  • Permanently blocked
IP: 163.172.223.32 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 163-172-223-32.rev.poneytelecom.eu
No attempts have been made to access the site since this IP was blocked.
  • 357 hits before blocked
  • 0 blocked hits
  • Permanently blocked
IP: 163.172.223.26 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 163-172-223-26.rev.poneytelecom.eu
No attempts have been made to access the site since this IP was blocked.
  • 368 hits before blocked
  • 0 blocked hits
  • Permanently blocked
IP: 163.172.222.188 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 163-172-222-188.rev.poneytelecom.eu
No attempts have been made to access the site since this IP was blocked.
  • 368 hits before blocked
  • 0 blocked hits
  • Permanently blocked
IP: 163.172.222.108 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 163-172-222-108.rev.poneytelecom.eu
No attempts have been made to access the site since this IP was blocked.
  • 350 hits before blocked
  • 0 blocked hits
  • Permanently blocked
IP: 178.217.187.39 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: tor-exit.xshells.net
No attempts have been made to access the site since this IP was blocked.
  • 0 hits before blocked
  • 0 blocked hits
  • Permanently blocked
IP: 91.196.50.33 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 91a196b50c33.greendata.pl
No attempts have been made to access the site since this IP was blocked.
  • 0 hits before blocked
  • 0 blocked hits
  • Permanently blocked
IP: 195.22.127.115 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 195.22.127.115
No attempts have been made to access the site since this IP was blocked.
  • 0 hits before blocked
  • 0 blocked hits
  • Permanently blocked
IP: 163.172.139.34 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 34-139-172-163.rev.cloud.scaleway.com
No attempts have been made to access the site since this IP was blocked.
  • 0 hits before blocked
  • 0 blocked hits
  • Permanently blocked
IP: 93.174.93.218 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: no-reverse-dns-configured.com
No attempts have been made to access the site since this IP was blocked.
  • 0 hits before blocked
  • 0 blocked hits
  • Permanently blocked
IP: 85.143.222.132 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 132175.simplecloud.club
No attempts have been made to access the site since this IP was blocked.
  • 0 hits before blocked
  • 0 blocked hits
  • Permanently blocked
IP: 85.143.221.143 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 132171.simplecloud.club
No attempts have been made to access the site since this IP was blocked.
  • 0 hits before blocked
  • 0 blocked hits
  • Permanently blocked
IP: 85.143.213.0 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 132173.simplecloud.club
No attempts have been made to access the site since this IP was blocked.
  • 0 hits before blocked
  • 0 blocked hits
  • Permanently blocked
IP: 120.27.114.224 [unblock] [permanently blocked]
Reason: Manual permanent block by admin
Hostname: 120.27.114.224
No attempts have been made to access the site since this IP was blocked.
  • 0 hits before blocked
  • 0 blocked hits
  • Permanently blocked
IP: 93.95.99.213 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: unspecified.mtw.ru
No attempts have been made to access the site since this IP was blocked.
  • 0 hits before blocked
  • 0 blocked hits
  • Permanently blocked
IP: 93.95.99.203 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: unspecified.mtw.ru
Last blocked attempt to access the site was 11/13/2016 3:55:54 PM (1 month ago).
  • 0 hits before blocked
  • 1 blocked hits
  • Permanently blocked
IP: 93.95.99.159 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: unspecified.mtw.ru
No attempts have been made to access the site since this IP was blocked.
  • 0 hits before blocked
  • 0 blocked hits
  • Permanently blocked
IP: 37.1.213.192 [unblock] [permanently blocked]
Reason: Manual permanent block by admin
Hostname: 37.1.213.192
No attempts have been made to access the site since this IP was blocked.
  • 0 hits before blocked
  • 0 blocked hits
  • Permanently blocked
IP: 95.213.236.44 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 95.213.236.44
No attempts have been made to access the site since this IP was blocked.
  • 0 hits before blocked
  • 0 blocked hits
  • Permanently blocked
IP: 95.213.236.43 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 95.213.236.43
No attempts have been made to access the site since this IP was blocked.
  • 0 hits before blocked
  • 0 blocked hits
  • Permanently blocked
IP: 95.213.203.226 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: mailer.klickserver85.xyz
No attempts have been made to access the site since this IP was blocked.
  • 0 hits before blocked
  • 0 blocked hits
  • Permanently blocked
IP: 95.213.203.71 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 95.213.203.71
No attempts have been made to access the site since this IP was blocked.
  • 0 hits before blocked
  • 0 blocked hits
  • Permanently blocked
IP: 195.20.200.234 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 234-rev200.giganet.net.pl
No attempts have been made to access the site since this IP was blocked.
  • 0 hits before blocked
  • 0 blocked hits
  • Permanently blocked
IP: 91.200.12.60 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: seo665.heilink.com
Last blocked attempt to access the site was 1 month 23 days ago.
  • 0 hits before blocked
  • 26 blocked hits
  • Permanently blocked
IP: 212.47.235.10 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 10-235-47-212.rev.cloud.scaleway.com
No attempts have been made to access the site since this IP was blocked.
  • 0 hits before blocked
  • 0 blocked hits
  • Permanently blocked
IP: 163.172.176.21 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 21-176-172-163.rev.cloud.scaleway.com
No attempts have been made to access the site since this IP was blocked.
  • 0 hits before blocked
  • 0 blocked hits
  • Permanently blocked
IP: 163.172.173.227 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 227-173-172-163.rev.cloud.scaleway.com
No attempts have been made to access the site since this IP was blocked.
  • 0 hits before blocked
  • 0 blocked hits
  • Permanently blocked
IP: 163.172.169.232 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 232-169-172-163.rev.cloud.scaleway.com
No attempts have been made to access the site since this IP was blocked.
  • 0 hits before blocked
  • 0 blocked hits
  • Permanently blocked
IP: 163.172.164.235 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 235-164-172-163.rev.cloud.scaleway.com
No attempts have been made to access the site since this IP was blocked.
  • 0 hits before blocked
  • 0 blocked hits
  • Permanently blocked
IP: 163.172.161.159 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 159-161-172-163.rev.cloud.scaleway.com
No attempts have been made to access the site since this IP was blocked.
  • 0 hits before blocked
  • 0 blocked hits
  • Permanently blocked
IP: 163.172.149.213 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 213-149-172-163.rev.cloud.scaleway.com
No attempts have been made to access the site since this IP was blocked.
  • 0 hits before blocked
  • 0 blocked hits
  • Permanently blocked
IP: 163.172.144.86 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 86-144-172-163.rev.cloud.scaleway.com
No attempts have been made to access the site since this IP was blocked.
  • 0 hits before blocked
  • 0 blocked hits
  • Permanently blocked
IP: 163.172.139.185 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 185-139-172-163.rev.cloud.scaleway.com
No attempts have been made to access the site since this IP was blocked.
  • 0 hits before blocked
  • 0 blocked hits
  • Permanently blocked
IP: 194.87.147.250 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: unspecified.mtw.ru
Last blocked attempt to access the site was 3 months 13 days ago.
  • 0 hits before blocked
  • 6443 blocked hits
  • Permanently blocked
IP: 85.143.213.105 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 85-143-213-105.simplecloud.club
Last blocked attempt to access the site was 2 months 27 days ago.
  • 0 hits before blocked
  • 76079 blocked hits
  • Permanently blocked
IP: 5.157.14.137 [unblock] [permanently blocked]
Reason: Manual permanent block by admin
Hostname: 5.157.14.137
No attempts have been made to access the site since this IP was blocked.
  • 0 hits before blocked
  • 0 blocked hits
  • Permanently blocked
IP: 212.47.248.86 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 86-248-47-212.rev.cloud.scaleway.com
Last blocked attempt to access the site was 3 months 21 days ago.
  • 0 hits before blocked
  • 4 blocked hits
  • Permanently blocked
IP: 212.47.243.235 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 235-243-47-212.rev.cloud.scaleway.com
Last blocked attempt to access the site was 3 months 17 days ago.
  • 0 hits before blocked
  • 502 blocked hits
  • Permanently blocked
IP: 164.132.202.46 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: ns3042845.ip-164-132-202.eu
No attempts have been made to access the site since this IP was blocked.
  • 0 hits before blocked
  • 0 blocked hits
  • Permanently blocked
IP: 163.172.179.127 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 127-179-172-163.rev.cloud.scaleway.com
Last blocked attempt to access the site was 3 months 16 days ago.
  • 0 hits before blocked
  • 413 blocked hits
  • Permanently blocked
IP: 163.172.178.224 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 224-178-172-163.rev.cloud.scaleway.com
Last blocked attempt to access the site was 3 months 21 days ago.
  • 0 hits before blocked
  • 4 blocked hits
  • Permanently blocked
IP: 163.172.177.223 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 223-177-172-163.rev.cloud.scaleway.com
Last blocked attempt to access the site was 3 months 21 days ago.
  • 0 hits before blocked
  • 4 blocked hits
  • Permanently blocked
IP: 163.172.174.158 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 158-174-172-163.rev.cloud.scaleway.com
Last blocked attempt to access the site was 3 months 21 days ago.
  • 0 hits before blocked
  • 4 blocked hits
  • Permanently blocked
IP: 163.172.174.62 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 62-174-172-163.rev.cloud.scaleway.com
Last blocked attempt to access the site was 3 months 21 days ago.
  • 0 hits before blocked
  • 4 blocked hits
  • Permanently blocked
IP: 163.172.165.210 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 210-165-172-163.rev.cloud.scaleway.com
Last blocked attempt to access the site was 4 months ago.
  • 0 hits before blocked
  • 6 blocked hits
  • Permanently blocked
IP: 163.172.146.75 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 75-146-172-163.rev.cloud.scaleway.com
Last blocked attempt to access the site was 4 months ago.
  • 0 hits before blocked
  • 6 blocked hits
  • Permanently blocked
IP: 163.172.138.253 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 253-138-172-163.rev.cloud.scaleway.com
Last blocked attempt to access the site was 4 months ago.
  • 0 hits before blocked
  • 6 blocked hits
  • Permanently blocked
IP: 195.2.253.157 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 253-157.static.spheral.ru
Last blocked attempt to access the site was 8/8/2016 4:22:32 AM (4 months 8 days ago).
  • 0 hits before blocked
  • 21 blocked hits
  • Permanently blocked
IP: 185.158.113.183 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 185.158.113.183
Last blocked attempt to access the site was 8/9/2016 4:10:09 PM (4 months 6 days ago).
  • 0 hits before blocked
  • 6396 blocked hits
  • Permanently blocked
IP: 185.158.113.10 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 185.158.113.10
Last blocked attempt to access the site was 8/8/2016 4:21:37 AM (4 months 8 days ago).
  • 0 hits before blocked
  • 24 blocked hits
  • Permanently blocked
IP: 185.158.112.176 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 185.158.112.176
Last blocked attempt to access the site was 8/9/2016 4:09:19 PM (4 months 6 days ago).
  • 0 hits before blocked
  • 5996 blocked hits
  • Permanently blocked
IP: 185.56.30.157 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: no-reverse-yet.3winfra.com
Last blocked attempt to access the site was 8/9/2016 9:28:47 AM (4 months 7 days ago).
  • 0 hits before blocked
  • 6955 blocked hits
  • Permanently blocked
IP: 40.86.225.13 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 40.86.225.13
Last blocked attempt to access the site was 7/31/2016 2:59:14 AM (4 months 16 days ago).
  • 0 hits before blocked
  • 1223 blocked hits
  • Permanently blocked
IP: 95.213.251.170 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: shipyard-ci.com
Last blocked attempt to access the site was 4 months 21 days ago.
  • 0 hits before blocked
  • 1956 blocked hits
  • Permanently blocked
IP: 78.155.219.245 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 78.155.219.245
Last blocked attempt to access the site was 4 months 21 days ago.
  • 0 hits before blocked
  • 2605 blocked hits
  • Permanently blocked
IP: 69.197.149.162 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 69.197.149.162
Last blocked attempt to access the site was 4 months 13 days ago.
  • 0 hits before blocked
  • 40 blocked hits
  • Permanently blocked
IP: 185.127.25.192 [unblock] [permanently blocked]
Reason: Manual permanent block by admin
Hostname: dynamo.ru
Last blocked attempt to access the site was 4 months 21 days ago.
  • 0 hits before blocked
  • 1190 blocked hits
  • Permanently blocked
IP: 185.98.87.45 [unblock] [permanently blocked]
Reason: Manual permanent block by admin
Hostname: 185.98.87.45
Last blocked attempt to access the site was 4 months 22 days ago.
  • 0 hits before blocked
  • 492 blocked hits
  • Permanently blocked
IP: 65.52.215.105 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 65.52.215.105
Last blocked attempt to access the site was 4 months 23 days ago.
  • 0 hits before blocked
  • 952 blocked hits
  • Permanently blocked
IP: 40.127.170.139 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 40.127.170.139
Last blocked attempt to access the site was 7/31/2016 2:58:58 AM (4 months 16 days ago).
  • 0 hits before blocked
  • 12627 blocked hits
  • Permanently blocked
IP: 40.86.226.107 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 40.86.226.107
Last blocked attempt to access the site was 7/24/2016 11:45:37 AM (4 months 23 days ago).
  • 0 hits before blocked
  • 940 blocked hits
  • Permanently blocked
IP: 40.86.224.249 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 40.86.224.249
Last blocked attempt to access the site was 7/31/2016 12:07:32 AM (4 months 16 days ago).
  • 0 hits before blocked
  • 1464 blocked hits
  • Permanently blocked
IP: 13.66.57.205 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 13.66.57.205
Last blocked attempt to access the site was 7/31/2016 12:17:50 AM (4 months 16 days ago).
  • 0 hits before blocked
  • 2121 blocked hits
  • Permanently blocked
IP: 13.65.30.225 [unblock] [permanently blocked]
Reason: Manual block by administrator
Hostname: 13.65.30.225
Last blocked attempt to access the site was 7/24/2016 11:45:32 AM (4 months 23 days ago).
  • 0 hits before blocked
  • 954 blocked hits
  • Permanently blocked
IP: 13.71.153.208 [unblock] [permanently blocked]
Reason: Manual permanent block by admin
Hostname: 13.71.153.208
Last blocked attempt to access the site was 7/31/2016 2:41:18 AM (4 months 16 days ago).
  • 0 hits before blocked
  • 12312 blocked hits
  • Permanently blocked
IP: 13.71.156.237 [unblock] [permanently blocked]
Reason: Manual permanent block by admin
Hostname: 13.71.156.237
Last blocked attempt to access the site was 7/31/2016 2:42:18 AM (4 months 16 days ago).
  • 0 hits before blocked
  • 10646 blocked hits
  • Permanently blocked
IP: 13.73.5.78 [unblock] [permanently blocked]
Reason: Manual permanent block by admin
Hostname: 13.73.5.78
Last blocked attempt to access the site was 7/27/2016 11:40:33 PM (4 months 19 days ago).
  • 0 hits before blocked
  • 10873 blocked hits
  • Permanently blocked