I recently saw a traffic spike to a small HTML-only website that never had WP on it, but was suddenly getting failed wp-admin logins and hundreds of PHP vuln scans, non stop. All from MSFT IP addresses. Abuse reports were sent, but there was no response, and the abuse kept happening.
So now I'm blocking every MSFT CIDR block that I can find, server-wide.
Dec [{(:no_ai:)}]
npub12n…j6lez
2026-01-16 11:32:39 UTC
in reply to nevent1q…aysv
Author Public Key
npub12nzfrjmjsth4xterphypy9dur34xxltjnzshtmtuvj4660tt77zsnj6lezSeen on
wss://relay.momostr.pinkPublished at
2026-01-16 11:32:39 UTCEvent JSON
{
"id": "03b013f9e485a4ea320f7291afd21395783aa8f4e3e0e7e213c5b3cc1f538cb2",
"pubkey": "54c491cb7282ef532f230dc81215bc1c6a637d7298a175ed7c64abad3d6bf785",
"created_at": 1768563159,
"kind": 1,
"tags": [
[
"p",
"9e66fb3573e3dfe77988b505d28287bb7d18e9646e187bee73f00f9ed382c0b6"
],
[
"p",
"470971b51213a29fd7306f444124ed43eea6a3d70beb17002e2e51f7b6142367"
],
[
"e",
"d19accda76e8505f6242e3a8b0a2c4d9f5c93f955d086cb96b45095da5fe6643",
"",
"reply",
"f6e54550c00ed58f7063b116d0b02c8f977bcd205669ea41f4ac197d161c2894"
],
[
"p",
"f6e54550c00ed58f7063b116d0b02c8f977bcd205669ea41f4ac197d161c2894"
],
[
"proxy",
"https://mastodon.ie/@dec23k/115904555253535983",
"web"
],
[
"e",
"2dd5b2bf77d5db8c28579572802fdfe9ababad7158d5cfbcfae885447d7ddbac",
"",
"root",
"470971b51213a29fd7306f444124ed43eea6a3d70beb17002e2e51f7b6142367"
],
[
"proxy",
"https://mastodon.ie/users/dec23k/statuses/115904555253535983",
"activitypub"
],
[
"L",
"pink.momostr"
],
[
"l",
"pink.momostr.activitypub:https://mastodon.ie/users/dec23k/statuses/115904555253535983",
"pink.momostr"
],
[
"-"
]
],
"content": "I recently saw a traffic spike to a small HTML-only website that never had WP on it, but was suddenly getting failed wp-admin logins and hundreds of PHP vuln scans, non stop. All from MSFT IP addresses. Abuse reports were sent, but there was no response, and the abuse kept happening.\nSo now I'm blocking every MSFT CIDR block that I can find, server-wide.",
"sig": "a6c3f135140dd1aba8ab005783d77c38fdab2479fea95560f24472bed042cbb02a4b2f30d1edd62146e58609b0bf40cb59cab31a858a6098e7201734fc16c2e7"
}