Threat Intel Apr 16-23 2018


THE RED PIRANHA TEAM


We are a group of IT experts recruited from all around the globe who are dedicated to giving our clients the utmost security that they require. We supply and manufacture security solutions to safeguard any information across the network with Confidentiality and Integrity. We are also known as Australia’s very first next-generation firewall developer and we are aiming to launch our very own Crystal Eye Operating System very soon. Red Piranha has developed by leaps and bounds over the past years offering end-to-end protection with real-time threat intelligence, expert thinking and critical analysis.

FOLLOW US:       fb twitter linkedin

 


LATEST THREATS, NEWS and DEVELOPMENTS


GDPR

GDPR - GENERAL DATA PROTECTION REGULATION | IS YOUR ENTERPRISE READY?

Crystal Eye

IMPLEMENT DATA LOSS PREVENTION WITH CRYSTAL EYE, UNIFIED THREAT MANAGEMENT

infographic

77 MORE REASONS WHY WE SHOULD TAKE CYBER CRIME SERIOUSLY AND GET SECURED RIGHT ABOUT NOW! (INFOGRAPHIC)

                            VISIT OUR BLOGS AND NEWS PAGE FOR MORE ARTICLES

  


TRENDS


  • United States attackers decreased to 21.83%, still on the top of the list this week.
  • Top Alarm was: Delivery & Attack - Bruteforce Authentication - SSH


TOP ATTACKER COUNTRIES


Country No. of Attackers Percentage
United States of America 388 21.83%
China 343 19.30%
Russian Federation 129 7.26%
Vietnam 118 6.64%
Brazil 105 5.91%
India 100 5.63%
Republic of Korea 85 4.78%
France 83 4.67%
United Kingdom 66 3.71%
Unknown 46 2.59%
Germany 46 2.59%
Netherlands 42 2.36%
Italy 39 2.19%
Indonesia 34 1.91%
Taiwan 31 1.74%
Ukraine 30 1.69%
Canada 29 1.63%
Thailand 22 1.24%
Bangladesh 21 1.18%
Singapore 20 1.13%

Top Country


THREAT GEOLOCATION


threat geoloc 23042018 


TOP ATTACKING HOSTS


Host Occurrences
218.65.30.25 50
61.177.172.31 48
83.212.123.145 28
103.79.143.106 24
5.101.40.81 18
185.100.222.110 14
61.177.172.33 14
46.246.62.213 13
119.249.54.217 12

Top Host 23042018


TOP ATTACKING NETWORKS


Origin AS Announcement Description
AS4134 61.177.0.0/16 CHINANET Jiangsu Province Network
AS5408 83.212.0.0/16 Greek Research and Technology Network S.A
AS135905 103.79.140.0/22 Cadi International Trading Services Company Limited
AS57043 5.101.40.0/24 United Protection (UK) Security LIMITED
AS206728 185.100.222.0/24 Media Land LLC


TOP ALARMS


Alarm No. of Occurrences
Delivery & Attack - Bruteforce Authentication - SSH 564
Environmental Awareness - OTX Indicators of Compromise - PULSE 411
Delivery & Attack - Bruteforce Authentication - Windows Login 1
Delivery & Attack - WebServer Attack - SQL Injection - Attack Pattern Detection  1

                                                 Comparison to the Previous Report

Alarm No. of Occurrences
Delivery & Attack - Bruteforce Authentication - SSH 363
Environmental Awareness - OTX Indicators of Compromise - PULSE 299
Delivery & Attack - WebServer Attack - SQL Injection - Attack Pattern Detection 5
0 Comments
Monday, April 23, 2018 By rayah.medina