List With Ips That Are Trying To Hack Cs-Cart Trought Api


A while back we start monitoring the API requests and we found out that is in a continues trying to be hacked and bellow we share with you a list with IPs and also some parts of the requests - Baiduspider - Baiduspider - Fake Baiduspider

Hmm, Can I block access to /api directory?

Hmm, Can I block access to /api directory?

For all our customers that don't use API we rename the file /api.php

Are you updating this list IP?

IP lists are going to be fairly useless the longer time goes by,

The question really is .. what are they manipulating through your cart via the API?

Have you locked down your API at all? Nothing should be push/pulling without some baseline security and key pairs established.