Zscaler, a SaaS security provider with a focus on corporate end user protection no matter what device they use, recently put together a database of abusive IP addresses, and released it to the public.
The tool, IPAbuseCheck, contains a record of unauthenticated IP addresses that are being hijacked to forward malicious traffic. The database is new, so there is only about 20,000 unique records, dated back to July. However, as Zscaler expands, and collects data, the IPAbuseCheck tool will grow as well.
“The goal of this free service is to provide those interested with this data to identify and clean-up clients that are participating in this form of abuse... Client IPs listed include both those that are intentionally used for abuse and those that are from infected hosts that are unknowingly abusing proxies on the Internet,” commented Zscaler’s Mike Geide.
IPAbuseCheck is best used by ISPs, organizations, security professionals, who want to checkup on IPs that seem to be generating unusual traffic, or if they just want to check all of their forward facing blocks.
One of the most common uses for open proxies is brute forcing, where compromised hosts are leveraged to attack a domain with a stream of username and password combinations. After that, they are used for comment spam on forums and blogs, pay to click fraud, IRC masking, and site scraping.
Zscaler’s tool is online, head here to use it.