Threat Intelligence Report - Jan. 14 to Jan. 20 2018
TRENDS
- 20% More SSH Brute Force Attempts
- 47% Less OTX Indicators of Compromise
TOP ATTACKER - COUNTRIES
Country
|
Attackers
|
Percentage
|
| China |
628 |
32.50% |
| United States |
356 |
18.40% |
| Vietnam |
125 |
6.50% |
| Russia |
118 |
6.10% |
| Korea |
98 |
5.10% |
| France |
88 |
4.60% |
| Brazil |
83 |
4.30% |
| India |
77 |
4% |
| United Kingdom |
57 |
2.90% |
| Germany |
37 |
1.90% |
| Italy |
33 |
1.70% |
| Taiwan |
30 |
1.60% |
| Argentina |
28 |
1.40% |
| Thailand |
28 |
1.40% |
| Canada |
26 |
1.30% |
| Egypt |
25 |
1.30% |
| Netherlands |
25 |
1.30% |
| Australia |
24 |
1.20% |
| Ukraine |
24 |
1.20% |
TOP ATTACKER - HOST
Host
|
Occurrences
|
| 5.101.40.10 |
19 |
| 103.99.2.3 |
12 |
| 211.253.10.96 |
11 |
| 111.230.171.142 |
10 |
| 103.213.115.45 |
9 |
| 103.79.141.173 |
8 |
| 212.129.39.185 |
8 |
| 103.79.143.32 |
8 |
| 103.79.141.162 |
6 |
THREAT GEOLOCATION
TOP ALARMS
Type of Alarms
|
No. of Alarms
|
| Delivery & Attack - Bruteforce Authentication - SSH |
306 |
| Environmental Awareness - OTX Indicators of Compromise - PULSE |
36 |
| Delivery & Attack - WebServer Attack - SQL Injection - Attack Pattern Detection |
3 |
| Delivery & Attack - Bruteforce Authentication - Linux/Unix |
1 |
Comparison to Previous Report
|
|
| Delivery & Attack - Bruteforce Authentication - SSH |
255 |
| Environmental Awareness - OTX Indicators of Compromise - PULSE |
72 |
| Delivery & Attack - WebServer Attack - SQL Injection - Attack Pattern Detection |
1 |
ALARMS
