after a day or two of switching from windows 10 to Zorin my isp sent me a mail saying my network is compromised. they say that some device is used by a "cyber-criminal" (lol). so basically something on my network is doing port scans/Network scans. any ideas if this is something with Zorin or just a really bad coincidence.
even if it isnt Zorin i would really want some advice on how to solve this. I know the ports being scanned and the exact times it happens.
TCP:23, TCP:2323 and SrcPort: 22318
it also said something about ~2000hosts.