Hacker attacks target 60 websites in Azerbaijan’s .az domain in early 2025

A total of 60 cyber incidents targeting websites in the ".az" domain were recorded in the first quarter of this year, according to a monitoring report released by cybersecurity company CYBER ON.

The analysis identified two primary causes behind the breaches: insecure coding practices and improper server configurations. Specifically, 42 per cent of the intrusions stemmed from unsafe coding, while 58 per cent were linked to misconfigured servers—often due to a lack of secure segmentation between resources, Caliber.Az reports per local media. 

Out of the 60 incidents, 18 attacks were aimed directly at servers, and 13 exploited vulnerabilities in the website code. However, the origin and method of the remaining 29 attacks remain undetermined.

Alarmingly, six websites experienced repeated attacks, which investigators attributed to unresolved vulnerabilities left open after the initial breaches.

The findings suggest that websites hosted on shared servers may face increased risk. Experts from CYBER ON recommend that companies using shared hosting services conduct regular reviews of their server settings and enhance their overall cybersecurity posture to mitigate future threats.

By Sabina Mammadli