Monday morning started with an abuse report from Hetzner. My server was apparently sending SMTP brute force attacks to mail servers worldwide. Great. The Initial Discovery The attack vector was an exposed FRP (Fast Reverse Proxy) server running without proper authentication. Attackers used it to deploy malware that: Connected to an IRC Command & Control […]
tonisivessoftware development