Reminder: No Massive Account Scanning on Websites/Apps

Ken’s Study Journey Strives to Maintain Internet Security

Say “No” to Massive Website Scanning

Simply Speaking

According to the news, a website/app underwent a Credential Stuffing Attack.

The company reported this incident and the hackers were penalised.

In order to enhance Internet security and according to laws and technical standards, website/app servers keep logs for every action (e.g. login attempt).

For more security information, please refer to previous notices published.

Dear students, users and fans,

Thanks for choosing and using Ken’s Study Journey services!

Security Incident on another Website/App

It has come to my attention that, according to the news, a website/app server underwent a Credential Stuffing Attack, attempting the SMS verification code API over 13,000,000 times in total (which matched over 300,000 registered accounts).

Discovering from the server logs, the tech/Internet company (i.e. the website owner) reported this security incident to authorities (the Internet Police), which then found and took legal action against the attackers (hackers).

Reminder: Web Servers may Keep Logs

Ken’s Study Journey reminds you again that the web servers keep logs for every visit, data edit, API call, etc.

Every login attempt (whether failed or successful; especially with incorrect passwords), verification code request, and other activity is to be recorded by the system.

The logs may be investigated (checked, viewed):

• in case of a security incident;
• in case of a bug, issue and/or service outage (server down);
• during (regular) maintenance and/or inspection;
• when requested by authorities.

This is according to the China Internet Security Law (Section 21 (c)) and relevant national technical standards (e.g. Internet Security Hierarchical Protection), which require web servers/systems to keep activity logs for at least 6 months.

This enhances website and Internet security, rapidly tracking illegal Internet activities (e.g. hacking), service outage incidents (server down) and bugs.

Please note that:

• This also applies to other websites and apps (including in-app mini-programs) in China Mainland.
• The logs do not include your privacy (e.g. password) and are usually encrypted. It only contains general information (e.g. date and time, IP address, URL/link accessed).

No massive scanning attempts of Ken’s Study Planner credentials have been discovered so far. However, please note that such attempts will be recorded (logged) on servers.

Note: It’s OK if you incorrectly type your username/password by error, while attacks threatening website/Internet security (e.g. trying weak passwords, brute-force and Credential Stuffing) by hackers are to be penalised.

A Self-invented Security Mechanism

Understanding the importance of logs, Ken’s Study Journey self-invented “Automated Reminder System for Threatening Website/Internet Security (Massively Scanning Website Hidden Modules)” by utilising this logging mechanism and standard.

Implemented from 1 August 2023, this invention (the new system) includes a Reminder Board (曝光台) displaying repeated scanning attempts (violations/offences) after system reminders/warnings.

Despite the new scanners, the number of scans has been reduced in recent months after this implementation. Some scanners immediately stopped scanning after system reminders/warnings.

Previous Notices about Internet Security

From April to November 2023, Ken’s Study Journey posted several notices about Internet Security, including:

For more information, please read the notices above.

Please supervise together and be an Internet security “Volunteer”.

Ken’s Study Journey strives to maintain Internet security. Say “No” to Massive Website Scanning.

Thanks for your understanding. You can contact me for any questions and suggestions.

Ken’s Study Journey

24 December 2023

Guangzhou, China