TRENDS
- Bruteforce Authentication - SSH with 61.2% of all occurrences was the top alarm this week.
- China is our Top Attacker by Country this week with 939 attacks recorded.
TOP ATTACKER COUNTRIES
| Country | No. of Attackers |
|---|---|
| China | 939 |
| United States | 824 |
| Russian Federation | 367 |
| Brazil | 225 |
| France | 179 |
| India | 178 |
| Vietnam | 170 |
| United Kingdom | 164 |
| Republic of Korea | 150 |
| Netherlands | 112 |
| Italy | 98 |
| Canada | 90 |
| Germany | 85 |
| Egypt | 77 |
| Australia | 73 |
| Ukraine | 63 |
| Indonesia | 54 |
| Thailand | 45 |
| Columbia | 43 |
| Japan | 41 |
THREAT GEOLOCATION
TOP ATTACKING HOSTS
| Host | Occurrences |
|---|---|
| 123.173.16.185 | 84 |
| 23.233.180.64 | 28 |
| 41.37.152.223 | 12 |
| 171.217.2.15 | 10 |
| 141.121.122.48 | 9 |
| 37.79.173.25 | 6 |
TOP ALARMS
| Alarm | No. of Occurrences |
|---|---|
| Delivery & Attack - Bruteforce Authentication - SSH | 170 |
| Reconnaissance & Probing - Attack Tool detected - Attack | 113 |
| Environmental Awareness - OTX Indicators of Compromise - PULSE | 90 |
| Reconnaissance & Probing - Database Attack - Stored Procedure Access - Attack | 114 |
| Delivery & Attack - WebServer Attack - Attack | 31 |
Comparison to the Previous Report
| Alarm | No. of Occurrences |
| Delivery & Attack - Bruteforce Authentication - SSH | 618 |
| Reconnaissance & Probing - Attack Tool detected - Attack | 224 |
| Environmental Awareness - OTX Indicators of Compromise - PULSE | 122 |
| Reconnaissance & Probing - Database Attack - Stored Procedure Access - Attack | 42 |
| Delivery & Attack - WebServer Attack - Attack | 4 |
EXPLOIT EVENT TYPES
OPEN THREAT EXCHANGE
VULNERABILITY NEWS
Ansible Tower CVE-2018-10884 Cross Site Request Forgery Vulnerability securityfocus.com/bid/105136
Eclipse OpenJ9 CVE-2018-12539 Multiple Privilege Escalation Vulnerabilities securityfocus.com/bid/105126
IBM Java SDK CVE-2018-1517 Denial of Service Vulnerability securityfocus.com/bid/105117
Details
Category