I have a Sales portal and an FTP server exposed to the net. Both servers get tens of thousands of failed logons in the event logs every day.
They hacked my Sales portal over Christmas break and encrypted everything important. I restored the server, but I was horrified when I checked the server
this morning and founds 40,000 rejected logon attempts. How can I permanently block this nonsense?
I have dug out what I can find in the forums. Is country blocking still broken? I will lose my mind if I have to recover from one more ransomeware (6 times).
This thread was automatically locked due to age.