Data fuzzing attacks

I would like to relate to something most of us are already well aware of by now, well, including team members. For some time we’ve been facing data-fuzzing attacks on nodes operated by us.

These have a varying level of success. First, attackers seemed to have been focused on bugs in libssh. After we’ve tightened up things (well, tightened up like way more than the latest official release of the libssh) and attackers noticed that they were having no more luck, - then, these fellas focused on Web-Socket layer of our system. From time to time, they were lucky. We’ve been including patches and fixes even in the middle of a night.

I would like thus to sincerely thank all these ‘attackers’ for helping us make the software more resilient.

1 Like