All Topics
All Topics
Technology
Technology
Design
Design
Programming
Programming
Science
Science
News
News
Gaming
Gaming
Entertainment
Entertainment
Business
Business
Finance
Finance
Sports
Sports
Health
Health
Food
Food
Travel
Travel
Art
Art
Music
Music
Books
Books
Education
Education
Politics
Politics
Personal
Personal
No algorithm. No AI slop. No ads. Just RSS. Pro-human. Indie writers. Real journalism. Open web. Chronological. Hand toasted.

Ecommerce Site Manager Reports Suspicious Bot Traffic from Single IP Appearing in Multiple Locations

By

nacho-daddy

4mo ago· 1 min readenNews
Bagel score 75 of 100
75/100
Toasty
Bagelometer

Crisped on the outside, thoughtful enough on the inside.

Score75TypenewsSentimentneutral

Summary

An ecommerce website manager reports suspicious bot traffic originating from one or two IP addresses making hundreds of daily requests. The IPs lack DNS reverse lookup records, and Cloudflare mapping shows one IP appearing to originate from multiple data centers across the US simultaneously, which is technically impossible for a single IP address. The user is asking the Hacker News community for explanations about this anomalous traffic pattern.

Key quotes

· 3 pulled
Recent bot traffic is up. Most traffic can be traced to one or two IP addresses with hundreds of requests per day.
These ip addresses don't have DNS records for reverse lookup, and when I map the requests in cloudflare, one address shows up as requesting from different data centers all over the US.
What is going on here?
Snippet from the RSS feed
Background: I manage an ecommerce website. Recent bot traffic is up. Most traffic can be traced to one or two IP addresses with hundreds of requests per day. These ip addresses don't have DNS records for reverse lookup, and when I map the requests in clou

You might also wanna read

Next.js Security Vulnerability: 500 Internal Server Errors May Signal Remote Code Execution Attacks

The article discusses a critical security vulnerability in Next.js applications where 500 Internal Server Errors can indicate Remote Code Ex

audits.blockhacks.io·5mo ago

How a Compromised Next.js Dependency Led to Server Hacking and Monero Mining

A developer shares their experience of discovering their Hetzner server was hacked and used for Monero cryptocurrency mining. The article de

blog.jakesaunders.dev·5mo ago

React2Shell Vulnerability: Critical RCE Bug in React Server Components Flight Protocol

The article discusses React2Shell (CVE-2025-55182), a critical remote code execution vulnerability in React Server Components' Flight protoc

elenacross7.medium.com·5mo ago

Mozilla SSL/TLS Configuration Generator for Secure Server Setup

Mozilla provides an SSL/TLS configuration generator tool that helps users create secure configurations for web, database, and mail software.

ssl-config.mozilla.org·6mo ago

UUIDs Alone Don't Prevent IDOR Security Vulnerabilities

This technical article explains why using UUIDs (Universally Unique Identifiers) alone does not provide adequate security protection against

alexsci.com·7mo ago

Understanding 301party.com: An Intentionally Open Redirect Service

The article describes 301party.com, an intentionally open redirect service, detailing its usage examples and shortcuts for various redirects

301party.com·9mo ago