on NAS, botnet

Malicious QNAPs in the wild

Here's another observation of a weird in-the-wild attack on the blog. The IP address on Shodan shows a device located in Hong Kong based ISP network. At the time of writing, the IP address still responds to requests on ports 80/443/8081. The SSL cert shows QNAP…

on botnet

Name + shaming malicious bots and actors

After looking through my nginx access logs, I realized it would be fun and insightful to show in the wild hacking attempts on this server. Whenever I see interesting attempts, I'll post them here with the log entry and a brief description on what they were trying to…