TransWikia.com

over 100 scanner requests 5 min after domain registration

Information Security Asked by user182663 on December 2, 2020

First off, I am no security expert!

Yesterday I registered a .cf domain, I needed it for about 10 minutes. About 5 minutes after domain registration I got over 100 scanner requests (I checked all requests, all are automated scanner requests like ZmEu etc.) in under 10 seconds.

  1. Considering the amount in such a short period and so soon after registration, am I being targeted or is this kinda everyday business for a .cf domain?
  2. All requests are exclusively over port 80. I had a few more ports (443,…) open. I am not sure how to interpret this?!
  3. All my things are written in c/c++ (sockets, openssl,…), is there a up to date list or something about common attacks targeting specifically c/c++ servers and how to prevent them?

————–EDIT

I host the things on my own, on a few server. Further the services are always the same (same ports), same static ip, but only for a short period always linked to a different domain. And it was the first time I used a .cf domain. Now I am simply a bit afraid to repeat the process, because yeah if I am really beeing targeted I should check everything twice first.

One Answer

A few things, those scans might either be from your hosting company or third parties (e.g hackers). You might getter closer to the answer by clarifying if your hosting company offers some kind of automated security assessment. You probably agreed to such a service. Otherwise, your site is being probed for exploitable weaknesses by some hackers.

Answered by SyCode on December 2, 2020

Add your own answers!

Ask a Question

Get help from others!

© 2024 TransWikia.com. All rights reserved. Sites we Love: PCI Database, UKBizDB, Menu Kuliner, Sharing RPP