TRENDS
- The number of unique attackers from China increased to 23.77% compared to last week.
- Top Alarm was: Delivery & Attack - Bruteforce Authentication - SSH with 408 occurrences.
TOP ATTACKER COUNTRIES
| Country | No. of Attackers | Percentage |
|---|---|---|
| China | 436 | 23.77% |
| United States | 346 | 18.87% |
| France | 122 | 6.65% |
| Russian Federation | 108 | 5.89% |
| Unknown | 103 | 5.62% |
| Brazil | 101 | 5.51% |
| Vietnam | 93 | 5.07% |
| Republic of Korea | 92 | 5.02% |
| United Kingdom | 54 | 2.94% |
| India | 53 | 2.89% |
| Germany | 47 | 2.56% |
| Italy | 38 | 2.07% |
| Australia | 37 | 2.02% |
| Thailand | 36 | 1.96% |
| Netherlands | 35 | 1.91% |
| Canada | 31 | 1.69% |
| Singapore | 27 | 1.47% |
| Taiwan | 26 | 1.42% |
| Indonesia | 25 | 1.36% |
| Colombia | 24 | 1.31% |
THREAT GEOLOCATION
TOP ATTACKING HOSTS
TOP ATTACKING NETWORKS
| Origin AS | Announcement | Description |
|---|---|---|
| AS36375 | 141.212.0.0/16 | University of Michigan |
| AS4134 | 58.48.0.0/13 | CHINANET Hubei Province Network |
| AS14061 | 165.227.160.0/20 | Digital Ocean LLC |
| AS4134 | 58.208.0.0/12 | CHINANET Jiangsu Province Network |
| AS62107 | 89.34.78.0/23 | IPv4 Management SRL |
TOP ALARMS
| Alarm | No. of Occurrences |
|---|---|
| Delivery & Attack - Bruteforce Authentication - SSH | 408 |
| Environmental Awareness - OTX Indicators of Compromise - PULSE | 87 |
| Delivery & Attack - Bruteforce Authentication - Linux/Unix | 87 |
| Delivery & Attack - WebServer Attack - SQL Injection - Attack Pattern Detection | 1 |
| Delivery & Attack - Bruteforce Authentication - Windows Login | 1 |
Comparison to the Previous Report
| Alarm | No. of Occurrences |
|---|---|
| Delivery & Attack - Bruteforce Authentication - SSH | 447 |
| Environmental Awareness - OTX Indicators of Compromise - PULSE | 261 |
| Delivery & Attack - Bruteforce Authentication - Linux/Unix | 101 |
| Delivery & Attack - Bruteforce Authentication - Windows Login | 1 |
Details
Category