Blocking AzureCloud due to malicious traffic

Jun

I haven’t posted in a long time but I felt the need to mention this to anyone else who might need to consider it. There has been a significant uptick in malicious traffic to my website over the last few months and I decided to do some analysis of from where it is coming. A huge source of these probes (looking through logs there are hundreds and hundreds of 404s that seem to be looking for vulnerable software) are Microsoft IP addresses. Digging around, it turns out they seem to be Azure VPS instances. I opened tickets with Microsoft at https://cert.microsoft.com for several of these IP addresses but the tickets were closed within a minute with a generic response: “This report could not be validated, no action was taken.”

It seems others have had this same issue.

Since this is a personal website and I don’t really need to be concerned with corporate connectivity, I decided just to block the entire AzureCloud. You can conveniently download the list from here in JSON format. I blocked the AzureCloud network prefixes.

Good bye, Azure VPS.

Posted by Toby Simmons on June 2nd, 2025 and filed under Simmons Consulting, Web Development at 8:22:45 am.
Tags: azure, microsoft, network security ... | No comments

This is the blog site of Toby Simmons, owner of the web design company Simmons Consulting.

Search

Verse of the Day

Whoever loves pleasure will be a poor man; he who loves wine and oil will not be rich. (Proverbs 21:17ESV)

Blocking AzureCloud due to malicious traffic

Search

Verse of the Day

Other things

Subscribe

Thanks for visiting!