Top Attacking Country
The United States of America is our current Top Attacker by country.
Top Attacking Hosts
Detailed Report on Suspicious hosts
| Behavior: | Scanning hosts |
| Activity: | Continuously using different username password combination existing and non-existing usernames. |
| We have found following different types of events: | SSHD authentication failed. |
| Multiple SSHD authentication failures. | |
| Multiple failed logins in a small period of time. | |
| SSH insecure connection attempt (scan). | |
| Failed Password | |
| Invalid User | |
| Input userauth request invalid user | |
| Type of attack: | Bruteforce |
Source IP Addresses
| 107.6.171.130 | 139.59.209.18 | 60.191.29.20 |
| 141.212.122.48 | 141.212.122.64 | 182.18.21.168 |
| 164.52.7.131 | 125.212.217.215 | 60.191.49.187 |
Top OTX Activity
SIEM Events
Threat Geolocations
AV/IPS Rules
SVN/Git Remote Code Execution through malicious
Attempt to crash named using malformed RNDC packet
Details
Date Published
November 20, 2017
Category