Red Piranha Threat Intelligence Report - April 2-8 '2018

TRENDS


  • United States attackers increase to 24.5%, moving to the top of the list this week.
  • United States and China together had 1404 different attackers, that sums up to 40% of the overall percentage of attackers. 


TOP ATTACKER COUNTRIES


Country No. of Attackers Percentage
United States of America 859 24.50%
China 545 15.50%
India 287 8.20%
Russian Federation 219 6.20%
France 155 4.40%
Brazil 154 4.40%
Vietnam 146 4.20%
United Kingdom 130 3.70%
Bangladesh 123 3.50%
Netherlands 123 3.50%
Republic of Korea 105 3.00%
Unknown 100 2.80%
Philippines 100 2.80%
Canada 87 2.50%
Indonesia 84 2.40%
Germany 72 2.10%
Australia 67 1.90%
Ukraine 53 1.50%
Hong Kong 52 1.50%
Egypt 51 1.50%
 Top Cyber Attackers by Country April 2-8 2018


THREAT GEOLOCATION


Cyber Security Threat Geolocations April 2-8 2018

 

TOP ATTACKING HOSTS


Host Occurrences
58.218.198.172 86
178.33.44.33 39
218.65.30.25 19
5.101.40.81 18
31.214.246.134 16
51.255.83.104 13
202.29.239.241 9
 Top Attacker Hosts April 2-8 2018


TOP ATTACKING NETWORKS


Origin AS Announcement Description
AS4134 58.208.0.0/12 CHINANET Jiangsu Province Network
AS16276 178.32.0.0/15 OVH SAS
AS57043 5.101.40.0/24 United Protection (UK) Security LIMITED
AS197071 31.214.240.0/21 Dennis Rainer Warnholz Trading as active-servers.com
AS4621 202.28.0.0/15 UniNet (Inter-university network) 


TOP ALARMS


Alarm No. of Occurrences
Delivery & Attack - Bruteforce Authentication - SSH 370
Environmental Awareness - OTX Indicators of Compromise - PULSE 177
Delivery & Attack - WebServer Attack - SQL Injection - Attack Pattern Detection 6
Delivery & Attack - Bruteforce Authentication - Linux/Unix 148
Exploitation & Installation - WebServer Attack - XSS 6

                                                 

Comparison to the Previous Report

Alarm No. of Occurrences
Delivery & Attack - Bruteforce Authentication - SSH 634
Environmental Awareness - OTX Indicators of Compromise - PULSE 128
Delivery & Attack - WebServer Attack - SQL Injection - Attack Pattern Detection 1
Delivery & Attack - Bruteforce Authentication - Linux/Unix 93

Top Cyber Security Alarms April 2-8 2018
Details