Dear, Hetzner
We are Shinhan Financial Group Information Security Department in South Korea.
We are acting as incident response team for our Customer in Korea.
We have detected an unfriendly network Attack originating from your site against Our Customer.
Detail logs are shown below.
=============================== Timezone of the Log is (GMT+9) ===================================
Manager Receipt Time
Source Address
Source Port
Destination Address
Destination Port
Protocol
2020/12/03 00:12:57 KST
46.4.71.37
49508
59.*.*.101
80
TCP
2020/12/03 00:19:57 KST
46.4.71.37
57660
59.*.*.101
80
TCP
2020/12/03 04:36:17 KST
46.4.71.37
63059
59.*.*.101
80
TCP
2020/12/03 05:34:47 KST
46.4.71.37
54030
59.*.*.241
80
TCP
==================================================================================================
This undesirable activity indicates that you may have a security problem or some of your users
may be delving into activities that may go against your acceptable use policy.
(This activity is neither just a scanning nor unexpected attempts, but a sophisticated attack)
Please take appropriate steps the attacker could be identified and this attack can be stopped.
Please give us a feedback about the results of the investigation.
If you need assistance or have further questions, please contact
Shinhan Financial Group(cert@shinhan.com) or the incident response team in your country
Shinhan Digital Solutions
Information Security Center
TEL : 031-900-4388, FAX : 031-905-0790
E-Mail : cert3@shinhan.com
