"London Honeypots Attacked 2000 Times Per Minute"

Security experts are warning that remote workers in the UK capital are being bombarded with cyberattacks after recording 91 million threats over a 28-day period in January. Insurer Coalition set up a series of honeypots in a project with police non-profit the Cyber Resilience Centre for London in a bid to calculate the cyber threat level to organizations operating in the region. Coalition’s UK security researcher, Simon Bell, stated that they use honeypots to learn about threat actors and their methods. Once the attack happens, one can see what vulnerabilities the cybercriminal is looking for and how they try to exploit them. Bell noted that in this exercise, their honeypots were given IP addresses that were identified as physical data centers in London. The study recorded 2000 attacks per minute targeting the honeypots, with 85% of them attempting to hijack remote desktop connections used by employees working outside the office. The attacks were traced back to 101,000 different threat actors, with Russia as the largest single source of attacks, followed by Bulgaria, Monaco, and Panama. However, Coalition quickly pointed out that many threat actors hide their true location using VPNs routed through other countries. Bell argued that the research showed how working from home has significantly widened the corporate attack surface.

Infosecurity reports: "London Honeypots Attacked 2000 Times Per Minute"