Threat_Intelligence_Report

Trends



  • China is on top of the list with 1317 unique attackers (25.60%)
  • Command and execution was the top exploit event of the week with 72% of occurrences



Top Attacker by Country


CountryNo. of AttackersPercentage
China131725.60%
United States120519.20%
Russian Federation4186.30%
Brazil3426.20%
France2585.30%
India1714.00%
Germany1683.50%
Netherlands1663.40%
United Kingdom1603.40%
Republic of Korea1523.30%
Australia1493.20%
Vietnam1222.80%
Ukraine1192.50%
Canada1142.10%
Taiwan1121.90%
Indonesia941.80%
Italy901.60%
Singapore741.60%
Poland681.50%


Top Cyber Attackers by Country  November 19-25 2018



Threat Geolocation





Top Attacking Hosts


HostOccurrences
116.31.116.11182
193.201.224.158116
94.73.146.8089
93.174.95.10672
94.102.49.12366
159.65.152.22838
198.20.87.9827
193.201.224.15819




Top Alarms


AlarmNo. of Occurrences
Bruteforce Authentication - SSH201
OTX Indicators of Compromise - PULSE88
Database Attack - Stored Procedure - Attack14
Attack Tool Detected - Attack12
WebServer Attack - Attack5
Bruteforce Authentication - Windows Login2


Comparison from Previous Report


AlarmNo. of Occurrences
OTX Indicators of Compromise - PULSE117
Database Attack - Stored Procedure - Attack59
Bruteforce Authentication - SSH47
Attack Tool Detected - Attack44
Bruteforce Authentication - Windows Login13
WebServer Attack - Attack7




Exploit Event Types and Top Event NIDS


Top Event NIDS and Exploits November 19-25 2018



Red Piranha - Open Threat Exchange


Pulses SubscribedIndicatorsLast UpdatedNumber of AlarmsNumber of Events
6,046889,9492018-11-26 00:61:016,49014,802




Top Malware and Top Domains



Cyber Security Threat Geolocations November 19-25 2018
Details