Reported cyber attacks 16/6/2021 - 16/7/2021 ___________________________________ ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ REPORT 17 FROM 8727 NODES ON 16/7/2021 18:21 ___________________________________ Top network attack vectors: TCP flood 47% UDP flood 30% DNS flood 15% ICMP flood 4% Low and slow attack 3% HTTP flood <1% IP flood <1% ___________________________________ Top application violations: Access violations 44% Injections 35% Cross site scripting 10% Exploits 6% Data theft 5% ___________________________________ Top scanned UDP Ports 5060 10% Session Initiation Protocol (SIP) 123 9% Network Time Protocol (NTP) 389 9% Lightweight Directory Access Protocol (LDAP) 11211 6% Memcached 1900 3% Microsoft SSDP Enables discovery of UPnP devices 161 3% Simple Network Management Protocol (SNMP) 1434 2% MSSQL (Microsoft SQL Server database management system) Monitor 137 2% NetBIOS NetBIOS Name Service 5353 2% Multicast DNS (mDNS) (Official) 5070 1% Binary Floor Control Protocol (BFCP), Session Initiation Protocol (SIP) ___________________________________ Top scanned TCP Ports 22 17% Secure Shell (SSH) 5900 5% Virtual Network Computing (VNC) 8088 4% EMC2 (Legato) Networker or Sun Solcitice Backup, Asterisk (PBX) Web Configuration utility 3389 3% Microsoft Terminal Server (RDP) 445 2% Microsoft-DS Active Directory, Windows shares, Microsoft-DS SMB file sharing 23 2% Telnet protocol—unencrypted text communications 6379 2% Redis key-value data store 443 1% HTTPS (Hypertext Transfer Protocol over SSL/TLS) 80 1% Hypertext Transfer Protocol (HTTP) 8080 1% EMC2 (Legato) Networker or Sun Solcitice Backup, HTTP alternate, Apache Tomcat, FilePhile Master/Relay ____________________________________________________________________________________________\ =============================================================================================>- ''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''/ |:'######::'##:::'##:'########::'########:'########:::'######::'####:'########:'##:::'##:|||| |'##... ##:. ##:'##:: ##.... ##: ##.....:: ##.... ##:'##... ##:. ##::... ##..::. ##:'##::|||| | ##:::..:::. ####::: ##:::: ##: ##::::::: ##:::: ##: ##:::..::: ##::::: ##:::::. ####:::|||| | ##:::::::::. ##:::: ########:: ######::: ########:: ##:::::::: ##::::: ##::::::. ##::::|||| | ##:::::::::: ##:::: ##.... ##: ##...:::: ##.. ##::: ##:::::::: ##::::: ##::::::: ##::::|||| | ##::: ##:::: ##:::: ##:::: ##: ##::::::: ##::. ##:: ##::: ##:: ##::::: ##::::::: ##::::|||| |. ######::::: ##:::: ########:: ########: ##:::. ##:. ######::'####:::: ##::::::: ##::::|||| |:......::::::..:::::........:::........::..:::::..:::......:::....:::::..::::::::..:::::|||| /\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\ __________________________________________________________________________________________ 01000001 01101110 01100100 00100000 01111001 01101111 01110101 00100000 01100001 01101001 01101110 00100111 01110100 00100000 01110011 01100101 01100101 01101110 00100000 01101110 01101111 01110100 01101000 01101001 01101110 01100111 00100000 01111001 01100101 01110100 00101110 00100000 01010100 01101000 01100101 00100000 01100010 01100101 01110011 01110100 00100000 01101001 01110011 00100000 01111001 01100101 01110100 00100000 01110100 01101111 00100000 01100011 01101111 01101101 01100101 00101110 00101110 00101110 __________________________________________________________________________________________