@bigbear said in Best Practices - Securing your Windows Server 2016 VM on Vultr:
However I wonder if Vultr ip ranges are scanned more frequently than Azure. I setup a couple honey potts and the attacks are 10 to 2 Vultr vs Amazon thus far.
I would have to wonder if it's also a matter of a weakness detected in the range once so now the robots keep pounding that IP or range. I say this because I had a server that had a vulnerability that went unpatched. After I patched it, the bad guys kept pounding the site. I even went as far as to move the site to a new server with a new IP and they kept looking for the vulnerable URLs for more than a week with thousands of requests coming in each hour.