Trends
- China is on top of the list with 734 unique attackers (26.5%)
- Cross Site Scripting was the top exploit event of the week with 65% occurrences
Top Attacker by Country
| Country | No. of Attackers | Percentage |
|---|
| China | 734 | 26.50% |
| United States | 582 | 19.30% |
| Brazil | 234 | 6.40% |
| Russian Federation | 162 | 6.20% |
| France | 157 | 4.90% |
| Republic of Korea | 126 | 4.70% |
| India | 103 | 4.00% |
| Vietnam | 98 | 4.00% |
| Netherlands | 95 | 3.10% |
| Italy | 79 | 2.70% |
| Taiwan | 78 | 2.60% |
| United Kingdom | 72 | 2.10% |
| Canada | 69 | 2.10% |
| Germany | 66 | 2.00% |
| Ukraine | 58 | 1.90% |
| Hong Kong | 53 | 1.70% |
| Indonesia | 50 | 1.50% |
| Australia | 41 | 1.50% |
| Thailand | 41 | 1.40% |
Top Attacking Hosts
| Host | Occurrences |
|---|
| 116.31.116.52 | 25 |
| 89.248.172.207 | 18 |
| 60.191.38.77 | 11 |
| 206.189.201.149 | 10 |
| 94.102.49.123 | 9 |
| 94.102.63.27 | 9 |
| 71.6.202.198 | 8 |
| 118.67.248.122 | 8 |
Top Alarms
| Alarm | No. of Occurrences |
|---|
| OTX Indicators of Compromise - PULSE | 131 |
| Database Attack - Stored Process Access - Attack | 52 |
| Bruteforce Authentication - SSH | 50 |
| Attack Tool Detected - Attack | 15 |
| WebServer Attack - Attack | 2 |
| WebServer Attack - XSS | 1 |
Comparison from Previous Report
| Alarm | No. of Occurrences |
|---|
| Database Attack - Stored Process Access - Attack | 172 |
| Network Discovery - SCAN | 148 |
| OTX Indicators of Compromise - PULSE | 146 |
| Attack Tool Detected - Attack | 40 |
| Bruteforce Authentication - SSH | 39 |
| WebServer Attack - Attack | 20 |
Red Piranha - Open Threat Exchange
| Pulses Subscribed | Indicators | Last Updated | Number of Alarms | Number of Events |
|---|
| 5,871 | 879,814 | 2018-10-29 01:13:14 | 6,044 | 11,372 |
