Yes

More than 20,000 Chinese servers are scouring the internet looking for vulnerable accounts.     You should assume that this is a permanent. part of their cyber warfare infrastructure. 

Hi guys, 

In our latest release, we added a feature that might help fight against these attacks. Each domain now has an option in Domain Settings > General for 'Block Authentication by Country'. 

This feature will allow you to block authentication attempts from specific countries, or ONLY ALLOW authentication from specific countries. Adding a country to the setting will just block authentication attempts, it won’t impact sending or receiving messages from the country. It will simply prevent anyone from the excluded countries from logging into the server, regardless of protocol. 

I hope this helps! 

This feature will be helpful.   Please be careful to update logging so that the country is indicated on both allowed and blocked connections.   Since, mapping of countries to IP addresses is an imperfect science, it will also be useful to have (a) an IP-TO-country lookup, and (b) an IP-to-country override mechanism.

As a related matter, I would like to have a way to extract IDS blocks and IP Blacklists, with country data included.   Screen scraping is pretty painful.   The ids-blocks.json file is parseable but does not have country names.   The IP blacklist screens do not show country codes, and the file seems to be unparseable binary data (or I am not looking at the right file.)