Sharp rise in traffic to / from Russian and Chinese IP Addresses

One of the services that’s included in all of our MyIT plans is a weekly review of the clients firewall logs. This tends to be a win / win for us and the customer because it gives the customer an additional layer of security for their environment and it gives us a very broad view of the threat landscape across a large geographic area and 20+ verticals ranging from construction to manufacturing to finance and entertainment. In most cases, there’s a “low rumble” of generic threat traffic across the fleet and maybe a few stand-outs here and there.

This week though, we have seen a significant spike in traffic from and to IP Addresses in Russia and China. Much of it has been from appliances like NVR / DVR devices, cameras and similar. Not really enough to go on yet but it was sufficiently outside of the norm to raise a few eyebrows. Questionable traffic from both countries is pretty standard but the amount of traffic and especially the traffic seeming to originate from these devices was significant.

Are you a small to medium sized business looking to leverage technology and enable your business and workforce to work smarter and more efficiently?  Do you already have computers, servers, firewalls, VPNs or other technology that you’re not taking full advantage of?  Are you looking for an IT Service Provider who understands small to medium sized businesses needs and the challenges that we face that can work with you to grow your business rather than just sell you time?

Cyber Tech Cafe an  IT Service Company with a focus on helping small to medium business get the most out of their technology investment.  As a small business ourselves, we understand the challenges you face and have designed our service offerings to help you get the most out of your technology dollar.  We offer on-call, as needed support if you just need a quick fix or extra set of hands right now.  We also offer maintenance plans that we call “MyIT” that are designed to address the most common concerns (patch management, disaster recovery / backup, log review, etc.) that are based on the number of workstations and servers that you have and have no term contract.  We believe that, if you find value in what we’re doing, you’ll find a way to keep us around without contract saying that you have to.

If you have questions about the MyIT plans or have an IT need that you need addressed right now, let us know.  We look forward to the opportunity to earn your business.