urgent help neede my system hacked ??

Dear All ,
today may system  has been hacked and we lost more than 60000 $
1st if some one has user name and domain name can he got the passsword and how ?
how he made bulk calls?
now i want to do block the ip address that send many requests to register or any kind of requests but many from the same ip how to do this through the firewall   linux iptables
 pbx symintic end point
please help me as this is urgent
tahasipAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

upanwarCommented:
I am not very good in security but whatever I know I am sharing with you.

If somebody knows the user name then he can definetly break the password anf possibalities increase if password is weak.

There are lots of software for bruiteforce attack, Directory attack.

There are lots of stuff to block traffic with the help of iptables. Basically these scripts check the failure logs and according to that it blocks the IP.

Webhosting companies use some scripts to achieve this goal.

These URLs may useful for you.

http://www.cyberciti.biz/faq/block-entier-country-using-iptables/

http://www.thegeekstuff.com/2010/07/fail2ban-howto/

http://www.pbxer.com/asterisk-security-use-iptables-to-block-nasty-hosts/
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
tahasipAuthor Commented:
thanks for ur replay
many responces that could help me direct i will be gratfull
0
tahasipAuthor Commented:
Plase if u have some thing for windowes that do the same ??
0
Learn SQL Server Core 2016

This course will introduce you to SQL Server Core 2016, as well as teach you about SSMS, data tools, installation, server configuration, using Management Studio, and writing and executing queries.

upanwarCommented:
I am good in Linux only. dont have so much idea about windows. Could you tell me which box has been hacked. It is a Linux box or its a mass attack.

Could you please tell in details.

0
tahasipAuthor Commented:
look my sip server is berkeke and runs on windowes server 2003 under symantic
0
BoguezCommented:
Take a look at the VoIP Blacklist Project:

http://www.infiltrated.net/voipabuse/
0
tahasipAuthor Commented:
ok , but how i block certain ip which send many traffic to me and if it is not included at the list ?
0
tahasipAuthor Commented:
thanks for replay

As i see may be iam wrong from ur link that i choose certan ip and block it now , if certain ip hacking me now i want the block happen directly to this ip as it send so many trafiic to me how we can do this
??
0
BoguezCommented:
can you provide some detail info. Like your provider, web browser, OS, etc
0
tahasipAuthor Commented:
iam using  http://www.brekeke.com/ as sip server running on windowes 2003
ans i also use symantic as firewall or antivirus
0
BoguezCommented:
i'm a little confused, you want to block a specific IP address or anyone that tries to hack your system???
0
tahasipAuthor Commented:
no not spesific ip address , i want to block any ip that try to hack my server by sending many traffice
0
BoguezCommented:
A good firewall and anti-virus should already being do this for you. I know my software notifies me when someone is attempting to get into my system. Here's a link yo some good security practices for VOIP users. Sorry I couldn't be more helpful:

http://docs.google.com/viewer?a=v&q=cache:bMS0EuEqdlsJ:www.teledynamic.com/support/Security/VOIP.doc+best+voip+security&hl=en&gl=us&pid=bl&srcid=ADGEESheCWnF34Qg70o110petwne2GUw33zl8g5ebvL1G7E7336El2RJTAfAC0LEFKRxQEqOqfWAih8xf6LkuL_S-hMsY3H4ICJkGciWXNed_qADuJlPoyUTbz0UDdvo9GmJ9ezDgUR7&sig=AHIEtbS3dimyRbnEznSJ-GqkY6hulwO26g
0
tahasipAuthor Commented:
is there any other sugestions for my situation ??
0
PowerToasterCommented:
I am sorry but know one is going to be able to suggest a solution to do what you want. There is not a simple program you can install that will guaranty the security of your system. I wish it were that easy.

You need to hire someone to secure your system, that is able to do a through evaluation of the risk and can suggest solutions to match.

Your system can be secured you just do not have the knowledge to do it.
0
tahasipAuthor Commented:
ok from where i can get some one trusted ?
0
PowerToasterCommented:
I would check to see if there is anyone in your area that is listed as a certified security expert in your local area.

Google or your phone book should give you a good start, I would then check to see if they are certified GIAC provides listings at their site http://www.giac.org.



0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
IP Telephony

From novice to tech pro — start learning today.