Microsoft IIS Sees Triple-Digit Spike in Cyberattack Volume

Internet Information Services (IIS), an extensible web server originally created by Microsoft for use with the Windows NT family, saw a whopping 782x increase in cyberattacks during the second quarter, according to eSentire’s latest report based on data gathered from 2,000+ proprietary network and host-based detection sensors distributed globally across multiple industries.

The report found that attacks on IIS increased from just 2,000 to a statistically significant 1.7 million, quarter-over-quarter. Most sources targeting IIS web servers originated from China-based IP addresses. According to Shodan, there are 3.5 million IIS web servers exposed around the globe, with 1 million exposed in China alone.

Read more about the findings of the new eSentire report on Threatpost.





Gain Deeper Insights Into The Threat

Sign up to gain access to our special reports on threat actors and their tactics as well as daily Threat Brief.

Your support will enable us to continue our production of action-oriented content and help us help you stay informed on the latest in adversary activities.

Try our free two week trial.

Sign Up For Free Trial of The Daily Threat Brief