Would love to know peoples opinions on this

That seems be a map of all DDoS in the world

From the information button in the top right corner:

Every second, Norse collects and analyzes live threat intelligence from darknets in hundreds of locations in over 40 countries. The attacks shown are based on a small subset of live flows against the Norse honeypot infrastructure, representing actual worldwide cyber attacks by bad actors. At a glance, one can see which countries are aggressors or targets at the moment, using which type of attacks (services-ports).

So they basically set up a large number of dummy computers and see who tries to attack them with what.

It’s interesting, but be careful drawing conclusions from it. What you see is limited and biased.

i only saw this site today and just thought it would be a bit strange that every one could see the attacks everyone is doing. Seems to be most aimed at st louis in america, do you think this is because of the recent police shooting? is this a real snap shot of what is happening in the cyber world?

It’s really hard to say what you are actually looking at. Are these individual packets? Connections? Connection initiations? Are the targets specific honeypots? (Why would anyone DOS those?) Are we seeing data going through routers? Etc. etc. etc.

There indeed seem to be short periods of focused attacks. But to which target(s) specifically? For all I know someone is just downloading a big file from some location in St. Louis. :p

In short: more information needed. :)

i saw a thing on face book about the shooting and a planned attack on st louis and was just wondering if it was related to what i am seeing on this norse map. Cant find anything else online about it though, its crazy if it actually is and we can see it happening! chaos!

found this on geek.com:

What makes this map so chilling is that these attacks are a random string of events representing a tiny fraction of all of the attack attempts happening all day, every day across the globe. Its a constant reminder to ensure the services and devices you use are up to date and dont fall victim to a random effort from one of these automated probes.

Yep. You can probably also check what kind of attempts are made on your own computer/network. I haven’t done it myself, but I do know that I get regular attempts of random “people” trying to brute force their way into my SSH. I’m sure it’s the same for HTTP, but also for old and new Windows exploits and what not.

Apart from being found directly (e.g. connecting to some site or broadcasting information out), it’s not that hard to check all IPv4 addresses for specific exploits (especially with botnets) . And so they do. :)