Starlight Intelligence’s Post

View organization page for Starlight Intelligence, graphic

463 followers

2mo

16 Aug 2024 : Most Active Threat Indicators #Cybersecurity #Cyberattack #RCE #Botnet #IOC Top 3 Source Countries: - India (IN) - A significant contributor to cyber attacks, particularly through the exploitation of vulnerabilities in routers and devices, such as the Mozi botnet and various command injection attacks. - China (CN) - Actively involved in multiple attacks, especially utilizing the Mozi botnet and executing remote code vulnerabilities on GPON routers. - United States (US) - Engaged in various malicious activities, including the SystemBC botnet and extensive scanning activities using Nmap. Source IP 200[.]110[.]182[.]61 3[.]26[.]100[.]255 119[.]160[.]128[.]161 170[.]78[.]22[.]155 131[.]108[.]33[.]216 144[.]217[.]240[.]177 124[.]95[.]5[.]238 113[.]228[.]134[.]11 221[.]203[.]135[.]38 183[.]6[.]76[.]139 42[.]239[.]158[.]202 125[.]42[.]12[.]133 121[.]235[.]55[.]186 115[.]50[.]43[.]27 182[.]121[.]58[.]76 125[.]44[.]195[.]131 123[.]14[.]99[.]203 125[.]47[.]111[.]125 27[.]24[.]46[.]78 120[.]86[.]255[.]68 42[.]52[.]204[.]159 159[.]89[.]27[.]161 165[.]232[.]120[.]129 139[.]162[.]141[.]82 74[.]234[.]21[.]150 59[.]93[.]24[.]164 117[.]201[.]235[.]129 117[.]247[.]138[.]16 103[.]197[.]115[.]69 117[.]219[.]93[.]105 117[.]195[.]86[.]168 117[.]195[.]143[.]118 59[.]178[.]75[.]57 103[.]200[.]84[.]88 59[.]184[.]252[.]98 117[.]254[.]101[.]126 117[.]248[.]164[.]68 117[.]248[.]173[.]154 59[.]183[.]113[.]58 117[.]222[.]254[.]196 220[.]158[.]158[.]88 117[.]213[.]118[.]246 103[.]203[.]72[.]124 61[.]2[.]107[.]22 117[.]206[.]180[.]116 117[.]245[.]169[.]232 103[.]197[.]115[.]63 61[.]0[.]184[.]35 59[.]182[.]86[.]222 61[.]0[.]176[.]103 103[.]197[.]115[.]121 117[.]248[.]172[.]117 59[.]95[.]129[.]147 117[.]203[.]57[.]23 106[.]205[.]172[.]91 117[.]248[.]32[.]20 117[.]200[.]86[.]83 117[.]217[.]42[.]225 117[.]255[.]27[.]85 117[.]248[.]164[.]127 117[.]253[.]8[.]64 117[.]253[.]170[.]60 117[.]245[.]38[.]122 59[.]89[.]9[.]114 117[.]208[.]253[.]81 59[.]92[.]165[.]219 59[.]89[.]231[.]20 59[.]97[.]114[.]89 82[.]102[.]26[.]25 128[.]199[.]45[.]238 175[.]107[.]37[.]216 175[.]107[.]0[.]76 212[.]127[.]78[.]133 188[.]214[.]122[.]106 37[.]120[.]233[.]29 146[.]190[.]110[.]98 146[.]190[.]98[.]186 68[.]183[.]228[.]85 18[.]189[.]14[.]185 18[.]116[.]31[.]24 3[.]142[.]149[.]206 18[.]191[.]151[.]24 172[.]94[.]89[.]5 34[.]216[.]246[.]208 54[.]235[.]206[.]14 18[.]218[.]120[.]53 159[.]65[.]166[.]169 18[.]117[.]144[.]139 64[.]227[.]135[.]53 199[.]45[.]154[.]121 107[.]150[.]31[.]58 18[.]217[.]143[.]136 152[.]42[.]131[.]56 18[.]191[.]38[.]198 18[.]216[.]231[.]225 159[.]65[.]79[.]124 134[.]209[.]32[.]88 152[.]42[.]194[.]207 103[.]114[.]106[.]2 103[.]133[.]111[.]48

To view or add a comment, sign in

More Relevant Posts

Starlight Intelligence

463 followers
1mo
Report this post
24 Sep 2024 : Most Active Threat Indicators #Cybersecurity #Cyberattack #RCE #Botnet #IOC Top 3 Source Countries: - India (IN): A significant source of cyber attacks, particularly through the Mozi Botnet and various remote command injection vulnerabilities targeting GPON routers. - China (CN): Actively involved in multiple attacks, especially with the Dasan GPON Remote Code Execution and exploiting vulnerabilities in NETGEAR devices. - United States (US): Notable for various attack types, including OpenSSL Heartbleed attacks and Nmap script scanning activities. Source IP 79[.]124[.]59[.]226 123[.]4[.]64[.]19 180[.]123[.]78[.]181 175[.]175[.]15[.]157 182[.]113[.]202[.]198 119[.]189[.]245[.]79 42[.]226[.]69[.]87 42[.]230[.]158[.]4 120[.]85[.]112[.]34 123[.]14[.]18[.]199 42[.]230[.]37[.]92 115[.]61[.]118[.]247 219[.]157[.]50[.]54 125[.]47[.]49[.]189 113[.]231[.]205[.]210 114[.]104[.]155[.]242 123[.]4[.]77[.]193 222[.]135[.]219[.]68 42[.]232[.]81[.]27 221[.]14[.]172[.]233 123[.]14[.]84[.]187 115[.]59[.]225[.]57 124[.]152[.]1[.]126 206[.]189[.]58[.]16 135[.]181[.]162[.]8 64[.]227[.]43[.]205 103[.]158[.]96[.]214 180[.]247[.]4[.]207 59[.]183[.]141[.]8 117[.]248[.]163[.]9 27[.]111[.]75[.]30 117[.]251[.]51[.]123 117[.]200[.]181[.]37 180[.]94[.]34[.]190 117[.]212[.]60[.]176 117[.]248[.]168[.]44 59[.]92[.]168[.]138 117[.]208[.]250[.]226 103[.]247[.]6[.]206 220[.]158[.]158[.]78 117[.]216[.]16[.]192 120[.]61[.]200[.]160 103[.]203[.]72[.]159 59[.]182[.]90[.]122 103[.]199[.]180[.]41 59[.]183[.]134[.]168 59[.]182[.]103[.]244 59[.]178[.]214[.]157 103[.]199[.]180[.]78 27[.]122[.]61[.]196 59[.]93[.]183[.]41 117[.]245[.]40[.]186 120[.]138[.]12[.]60 103[.]203[.]72[.]226 117[.]248[.]167[.]19 117[.]195[.]138[.]147 117[.]255[.]178[.]47 103[.]208[.]233[.]56 117[.]254[.]32[.]96 45[.]115[.]89[.]225 103[.]15[.]254[.]245 117[.]253[.]49[.]65 117[.]253[.]11[.]139 120[.]138[.]12[.]130 117[.]248[.]174[.]198 117[.]251[.]18[.]126 117[.]219[.]115[.]154 180[.]94[.]34[.]136 117[.]245[.]44[.]136 156[.]227[.]233[.]199 105[.]155[.]255[.]156 45[.]156[.]128[.]124 83[.]249[.]236[.]177 159[.]223[.]75[.]230 128[.]199[.]109[.]175 157[.]245[.]60[.]236 1[.]10[.]212[.]35 1[.]10[.]212[.]36 104[.]156[.]155[.]21 159[.]223[.]218[.]6 18[.]117[.]175[.]158 138[.]197[.]24[.]249 18[.]117[.]85[.]155 3[.]138[.]141[.]111 76[.]77[.]23[.]224 3[.]143[.]116[.]153 18[.]191[.]112[.]203 34[.]41[.]199[.]168 54[.]166[.]183[.]108 18[.]217[.]178[.]181 18[.]216[.]109[.]128 172[.]104[.]229[.]143 96[.]33[.]220[.]208 172[.]212[.]60[.]200 104[.]152[.]52[.]54 3[.]141[.]24[.]223 172[.]70[.]42[.]92 128[.]14[.]83[.]44 160[.]25[.]164[.]102 14[.]162[.]15[.]161
Like Comment
To view or add a comment, sign in
Starlight Intelligence

463 followers
1mo
Report this post
12 Sep 2024 : Most Active Threat Indicators #Cybersecurity #Cyberattack #RCE #Botnet #IOC Top 3 Source Countries: - China (CN): A major source of cyber attacks, particularly with the Mozi Botnet and various remote execution vulnerabilities targeting D-Link and GPON devices. - India (IN): Involved in multiple attacks, especially related to the Mozi Botnet and remote command execution vulnerabilities in network devices. - United States (US): Active in various scanning activities and exploits, including Nmap Script Scanners and HTTP URI SQL Injection attacks. Source IP 190[.]113[.]164[.]14 202[.]47[.]95[.]170 170[.]64[.]137[.]123 57[.]152[.]56[.]44 27[.]43[.]206[.]129 61[.]53[.]218[.]73 119[.]179[.]214[.]83 125[.]84[.]53[.]8 122[.]97[.]137[.]157 221[.]14[.]207[.]11 123[.]14[.]184[.]122 175[.]173[.]189[.]43 175[.]173[.]150[.]171 39[.]185[.]101[.]38 120[.]86[.]253[.]51 219[.]157[.]35[.]52 122[.]97[.]136[.]63 27[.]193[.]169[.]50 42[.]53[.]3[.]161 221[.]1[.]225[.]99 182[.]121[.]137[.]119 120[.]86[.]239[.]201 120[.]85[.]114[.]4 165[.]232[.]78[.]249 172[.]111[.]181[.]7 77[.]237[.]238[.]107 142[.]93[.]107[.]109 134[.]122[.]76[.]33 37[.]120[.]142[.]155 52[.]56[.]226[.]253 156[.]225[.]148[.]143 112[.]215[.]201[.]215 162[.]158[.]49[.]41 59[.]96[.]249[.]165 59[.]89[.]235[.]185 202[.]170[.]201[.]204 202[.]170[.]201[.]227 61[.]0[.]99[.]167 117[.]210[.]181[.]4 117[.]206[.]76[.]208 59[.]95[.]89[.]222 59[.]178[.]30[.]89 59[.]182[.]129[.]152 61[.]0[.]179[.]167 61[.]3[.]216[.]154 117[.]206[.]79[.]237 117[.]202[.]82[.]245 103[.]199[.]180[.]51 103[.]15[.]255[.]91 59[.]93[.]225[.]132 117[.]252[.]198[.]144 223[.]190[.]87[.]201 117[.]248[.]107[.]148 117[.]207[.]77[.]169 27[.]122[.]61[.]54 117[.]198[.]14[.]110 117[.]253[.]104[.]26 124[.]246[.]157[.]29 153[.]206[.]163[.]64 8[.]216[.]90[.]109 49[.]143[.]68[.]148 139[.]5[.]157[.]104 105[.]154[.]162[.]62 160[.]119[.]156[.]181 197[.]210[.]227[.]129 149[.]126[.]75[.]16 45[.]140[.]140[.]23 172[.]94[.]102[.]8 91[.]92[.]241[.]6 175[.]107[.]9[.]32 178[.]67[.]249[.]210 80[.]76[.]42[.]88 79[.]134[.]202[.]162 37[.]139[.]53[.]67 147[.]45[.]75[.]21 118[.]107[.]44[.]111 128[.]199[.]157[.]193 78[.]188[.]31[.]103 40[.]83[.]128[.]23 3[.]128[.]25[.]175 34[.]41[.]71[.]78 172[.]206[.]139[.]15 13[.]91[.]135[.]151 13[.]64[.]212[.]245 137[.]184[.]72[.]61 92[.]249[.]48[.]213 3[.]145[.]187[.]171 23[.]225[.]71[.]99 3[.]129[.]128[.]56 38[.]50[.]42[.]146 71[.]6[.]199[.]23 18[.]189[.]7[.]146 152[.]42[.]137[.]162 18[.]188[.]43[.]218 143[.]198[.]220[.]216 3[.]144[.]169[.]231 143[.]198[.]83[.]29 52[.]228[.]155[.]172 103[.]153[.]78[.]87 185[.]240[.]64[.]66

1 Comment
Like Comment
To view or add a comment, sign in
Starlight Intelligence

463 followers
2mo
Report this post
13 Aug 2024 : Most Active Threat Indicators #Cybersecurity #Cyberattack #RCE #Botnet #IOC Top 3 Source Countries: - United States (US) - A significant source of cyber attacks, particularly involving the SystemBC botnet and various scanning activities. - India (IN) - Responsible for multiple instances of the Mozi botnet and command injection vulnerabilities, indicating a high level of malicious activity. - China (CN) - Involved in numerous attacks, especially exploiting vulnerabilities in routers and executing various command injections. Source IP 45[.]230[.]66[.]37 3[.]26[.]100[.]215 170[.]64[.]198[.]51 57[.]152[.]56[.]108 46[.]10[.]120[.]126 177[.]19[.]210[.]244 186[.]221[.]166[.]63 122[.]96[.]31[.]201 27[.]206[.]185[.]237 125[.]43[.]82[.]229 111[.]229[.]121[.]30 119[.]186[.]205[.]24 101[.]126[.]93[.]132 113[.]220[.]26[.]211 222[.]139[.]63[.]227 115[.]51[.]34[.]177 113[.]236[.]110[.]63 222[.]139[.]229[.]184 140[.]249[.]175[.]181 109[.]123[.]243[.]194 167[.]71[.]47[.]197 149[.]102[.]247[.]31 149[.]102[.]246[.]198 130[.]61[.]16[.]233 139[.]59[.]135[.]6 172[.]68[.]194[.]182 162[.]158[.]110[.]217 206[.]81[.]28[.]185 196[.]196[.]203[.]42 65[.]21[.]8[.]4 212[.]47[.]241[.]172 88[.]208[.]226[.]216 43[.]154[.]94[.]18 43[.]155[.]104[.]117 172[.]232[.]250[.]21 175[.]45[.]189[.]36 117[.]253[.]6[.]156 159[.]89[.]174[.]87 117[.]253[.]10[.]26 172[.]236[.]66[.]104 59[.]89[.]8[.]155 117[.]255[.]185[.]59 117[.]212[.]44[.]165 61[.]0[.]210[.]118 117[.]242[.]235[.]198 59[.]184[.]247[.]173 59[.]97[.]125[.]122 117[.]198[.]14[.]185 117[.]220[.]150[.]174 117[.]254[.]32[.]212 106[.]51[.]80[.]192 117[.]205[.]58[.]78 195[.]214[.]235[.]79 95[.]174[.]64[.]98 139[.]162[.]120[.]38 189[.]147[.]93[.]39 172[.]235[.]174[.]125 175[.]107[.]1[.]90 151[.]255[.]228[.]252 37[.]43[.]45[.]227 178[.]128[.]221[.]83 128[.]199[.]11[.]103 118[.]107[.]44[.]111 178[.]128[.]104[.]233 41[.]79[.]198[.]23 196[.]203[.]254[.]3 159[.]65[.]104[.]98 3[.]23[.]94[.]209 13[.]59[.]171[.]167 18[.]191[.]39[.]98 64[.]23[.]138[.]225 18[.]222[.]133[.]9 172[.]168[.]41[.]157 18[.]189[.]13[.]214 172[.]168[.]40[.]211 209[.]38[.]20[.]101 206[.]189[.]188[.]160 51[.]8[.]223[.]171 13[.]64[.]193[.]92 3[.]15[.]42[.]194 67[.]207[.]80[.]81 3[.]138[.]140[.]252 3[.]143[.]169[.]180 154[.]38[.]172[.]115 134[.]122[.]69[.]132 144[.]126[.]220[.]201 3[.]144[.]205[.]116 165[.]227[.]16[.]198 18[.]191[.]232[.]181 104[.]131[.]133[.]129 172[.]212[.]58[.]186 3[.]16[.]187[.]170 68[.]69[.]185[.]58 172[.]168[.]41[.]87 159[.]89[.]144[.]191 185[.]230[.]138[.]122 51[.]8[.]217[.]56 152[.]42[.]172[.]17 52[.]228[.]153[.]112 185[.]240[.]64[.]245
Like Comment
To view or add a comment, sign in
Starlight Intelligence

463 followers
1mo
Report this post
02 Sep 2024 : Most Active Threat Indicators #Cybersecurity #Cyberattack #RCE #Botnet #IOC Top 3 Source Countries: - China (CN): The most active source, involved in multiple attacks targeting vulnerabilities in NETGEAR and D-Link devices, as well as the Mozi botnet. - India (IN): Notable for its involvement in attacks leveraging the Mozi botnet and exploiting vulnerabilities in multiple routers, including GPON devices. - Egypt (EG): Active in various attacks, particularly utilizing the Mirai botnet and exploiting MVPower DVR vulnerabilities. SSource IP 83[.]222[.]190[.]54 104[.]163[.]177[.]26 27[.]43[.]206[.]43 27[.]43[.]206[.]148 182[.]116[.]55[.]206 111[.]53[.]214[.]94 123[.]10[.]140[.]13 119[.]116[.]226[.]120 101[.]37[.]34[.]124 175[.]146[.]164[.]104 222[.]141[.]224[.]183 42[.]53[.]82[.]133 115[.]55[.]246[.]162 123[.]129[.]129[.]143 112[.]248[.]109[.]115 110[.]182[.]121[.]226 110[.]243[.]19[.]87 42[.]56[.]190[.]229 106[.]75[.]164[.]51 123[.]188[.]78[.]1 149[.]102[.]238[.]133 149[.]50[.]215[.]72 194[.]45[.]37[.]148 197[.]62[.]64[.]131 41[.]238[.]158[.]176 197[.]58[.]238[.]100 41[.]43[.]244[.]68 197[.]33[.]186[.]253 41[.]238[.]114[.]44 197[.]39[.]81[.]69 41[.]47[.]202[.]63 138[.]199[.]31[.]202 172[.]212[.]61[.]18 199[.]45[.]154[.]139 118[.]141[.]20[.]121 8[.]217[.]10[.]15 101[.]36[.]127[.]85 117[.]193[.]252[.]31 117[.]192[.]47[.]2 61[.]1[.]237[.]145 117[.]248[.]172[.]58 59[.]183[.]103[.]190 117[.]217[.]32[.]34 59[.]93[.]150[.]3 117[.]248[.]165[.]190 220[.]158[.]159[.]149 117[.]248[.]27[.]238 103[.]197[.]115[.]102 117[.]248[.]170[.]192 117[.]208[.]252[.]93 117[.]243[.]102[.]222 59[.]182[.]77[.]98 103[.]199[.]180[.]71 117[.]245[.]40[.]136 59[.]91[.]90[.]172 202[.]170[.]201[.]182 117[.]219[.]112[.]212 117[.]202[.]209[.]132 117[.]219[.]94[.]201 103[.]199[.]200[.]236 61[.]3[.]86[.]16 45[.]115[.]89[.]89 117[.]198[.]16[.]149 103[.]220[.]31[.]226 220[.]158[.]158[.]27 45[.]139[.]122[.]176 124[.]103[.]133[.]116 47[.]250[.]184[.]39 45[.]95[.]147[.]211 45[.]156[.]128[.]101 175[.]107[.]37[.]143 194[.]107[.]18[.]39 86[.]120[.]224[.]88 178[.]72[.]75[.]45 178[.]72[.]88[.]71 13[.]51[.]167[.]95 8[.]222[.]175[.]173 139[.]162[.]61[.]81 166[.]108[.]226[.]101 188[.]166[.]212[.]68 47[.]236[.]140[.]80 159[.]65[.]139[.]18 134[.]209[.]102[.]71 101[.]127[.]58[.]10 45[.]58[.]184[.]159 20[.]118[.]71[.]65 143[.]198[.]224[.]49 149[.]28[.]200[.]75 104[.]152[.]52[.]84 45[.]43[.]143[.]221 48[.]217[.]211[.]243 3[.]133[.]11[.]224 185[.]230[.]138[.]122 52[.]91[.]83[.]253 159[.]223[.]3[.]111 107[.]175[.]44[.]207 5[.]62[.]57[.]244 15[.]220[.]17[.]120 3[.]15[.]157[.]84 18[.]222[.]173[.]189
Like Comment
To view or add a comment, sign in
Starlight Intelligence

463 followers
2mo
Report this post
15 Aug 2024 : Most Active Threat Indicators #Cybersecurity #Cyberattack #RCE #Botnet #IOC Top 3 Source Countries: - United States (US) - Responsible for a significant number of attacks, particularly involving scanning activities using Nmap and exploitation of vulnerabilities in various systems. - China (CN) - Engaged in multiple malicious activities, including SSH brute force attempts, exploitation of GPON routers, and the Mirai botnet. - India (IN) - Involved in numerous attacks, especially exploiting vulnerabilities in GPON routers and D-Link devices. Source IP 45[.]230[.]66[.]54 45[.]230[.]66[.]17 45[.]230[.]66[.]16 170[.]64[.]181[.]186 3[.]106[.]118[.]133 129[.]148[.]62[.]192 108[.]165[.]232[.]5 39[.]173[.]182[.]236 27[.]43[.]204[.]57 42[.]4[.]100[.]111 182[.]121[.]168[.]21 182[.]121[.]252[.]73 120[.]85[.]182[.]121 14[.]223[.]35[.]100 39[.]79[.]39[.]95 220[.]198[.]241[.]246 182[.]121[.]243[.]44 186[.]29[.]141[.]124 157[.]230[.]121[.]198 64[.]226[.]120[.]211 159[.]223[.]17[.]137 165[.]227[.]158[.]48 51[.]8[.]231[.]209 142[.]93[.]106[.]91 176[.]74[.]86[.]110 61[.]3[.]97[.]45 117[.]197[.]170[.]195 142[.]93[.]209[.]134 61[.]3[.]212[.]85 59[.]184[.]243[.]180 117[.]219[.]123[.]185 59[.]91[.]87[.]115 59[.]97[.]127[.]60 202[.]168[.]86[.]242 117[.]253[.]53[.]216 117[.]254[.]33[.]163 117[.]207[.]172[.]108 117[.]252[.]132[.]141 45[.]115[.]89[.]232 85[.]203[.]45[.]112 106[.]243[.]22[.]188 124[.]43[.]17[.]60 141[.]98[.]11[.]151 107[.]189[.]31[.]223 160[.]178[.]207[.]106 92[.]119[.]179[.]92 185[.]152[.]95[.]131 83[.]171[.]227[.]218 109[.]92[.]237[.]154 176[.]45[.]189[.]175 47[.]237[.]29[.]192 139[.]59[.]251[.]122 165[.]22[.]56[.]169 37[.]19[.]221[.]158 18[.]216[.]14[.]149 64[.]23[.]248[.]82 3[.]129[.]5[.]167 3[.]16[.]206[.]10 20[.]185[.]184[.]179 154[.]26[.]159[.]123 47[.]236[.]11[.]101 174[.]138[.]46[.]95 3[.]143[.]223[.]90 3[.]145[.]216[.]165 172[.]232[.]203[.]147 3[.]143[.]210[.]142 206[.]123[.]132[.]147 172[.]232[.]203[.]71 3[.]142[.]237[.]148 172[.]232[.]217[.]148 34[.]171[.]200[.]92 18[.]217[.]114[.]107 143[.]198[.]237[.]240 3[.]16[.]167[.]157 51[.]8[.]217[.]166 18[.]217[.]96[.]188 170[.]64[.]206[.]11 3[.]22[.]221[.]255 3[.]17[.]163[.]127 3[.]141[.]6[.]184 5[.]183[.]254[.]186 3[.]140[.]240[.]198 3[.]17[.]139[.]161 45[.]88[.]91[.]179 18[.]223[.]214[.]242 18[.]188[.]15[.]29 3[.]140[.]248[.]157 18[.]216[.]117[.]107 18[.]188[.]218[.]49 134[.]122[.]58[.]104 18[.]220[.]29[.]118 3[.]144[.]185[.]17 13[.]59[.]122[.]28 3[.]138[.]198[.]75 18[.]188[.]66[.]208 3[.]144[.]182[.]36 170[.]64[.]225[.]201 3[.]133[.]11[.]118 18[.]188[.]61[.]195 3[.]17[.]178[.]97
Like Comment
To view or add a comment, sign in
Starlight Intelligence

463 followers
2w
Report this post
09 Oct 2024 : Most Active Threat Indicators #Cybersecurity #Cyberattack #RCE #Botnet #IOC Top 3 Source Countries: - United States (US): The leading source of cyber attacks, frequently utilizing various methods such as Nmap scanners, HTTP URI SQL injection, and command injections across multiple devices. - India (IN): Actively involved in numerous attacks, particularly targeting routers with command injection vulnerabilities, indicating a significant range of cyber threats from this region. - China (CN): Notable for its involvement in various attacks, especially through the exploitation of GPON devices and command injections, showcasing a strong presence in global cyber threats. Source IP 3[.]26[.]100[.]90 159[.]203[.]38[.]3 120[.]85[.]93[.]94 58[.]47[.]98[.]59 119[.]185[.]243[.]81 175[.]165[.]86[.]31 203[.]196[.]8[.]47 58[.]101[.]209[.]40 123[.]14[.]183[.]185 123[.]9[.]242[.]67 42[.]58[.]76[.]152 125[.]44[.]62[.]253 46[.]101[.]227[.]222 159[.]100[.]18[.]123 95[.]142[.]121[.]44 207[.]154[.]222[.]216 178[.]215[.]238[.]24 91[.]218[.]67[.]189 149[.]102[.]254[.]8 172[.]68[.]243[.]63 162[.]158[.]134[.]24 172[.]68[.]243[.]54 172[.]68[.]243[.]46 172[.]68[.]243[.]64 197[.]53[.]130[.]156 156[.]214[.]170[.]246 172[.]64[.]238[.]106 195[.]221[.]58[.]3 62[.]212[.]36[.]131 172[.]71[.]211[.]30 172[.]71[.]214[.]141 162[.]158[.]179[.]170 172[.]71[.]210[.]192 172[.]71[.]210[.]202 162[.]158[.]114[.]22 162[.]158[.]114[.]251 172[.]71[.]214[.]197 172[.]71[.]210[.]218 162[.]158[.]179[.]17 162[.]158[.]179[.]47 162[.]158[.]178[.]174 172[.]71[.]215[.]151 172[.]71[.]210[.]154 172[.]71[.]211[.]63 162[.]158[.]178[.]140 172[.]71[.]214[.]23 162[.]158[.]114[.]101 162[.]158[.]114[.]90 172[.]71[.]214[.]170 172[.]71[.]214[.]227 172[.]71[.]211[.]5 162[.]158[.]179[.]13 172[.]71[.]214[.]25 162[.]158[.]179[.]42 172[.]71[.]214[.]9 117[.]248[.]18[.]235 103[.]199[.]200[.]243 59[.]91[.]170[.]196 59[.]180[.]163[.]227 202[.]170[.]201[.]75 117[.]209[.]94[.]127 103[.]247[.]54[.]247 59[.]99[.]93[.]162 117[.]219[.]165[.]158 117[.]208[.]210[.]191 220[.]158[.]158[.]130 103[.]199[.]180[.]205 183[.]82[.]108[.]44 103[.]199[.]191[.]5 117[.]242[.]104[.]207 185[.]196[.]10[.]71 175[.]103[.]242[.]230 108[.]160[.]143[.]88 175[.]107[.]0[.]153 77[.]239[.]211[.]50 94[.]79[.]7[.]50 195[.]133[.]2[.]209 45[.]118[.]132[.]159 101[.]51[.]3[.]127 47[.]237[.]94[.]64 3[.]136[.]11[.]228 34[.]28[.]33[.]208 104[.]40[.]75[.]118 3[.]15[.]157[.]234 141[.]98[.]84[.]100 66[.]240[.]236[.]109 20[.]118[.]71[.]84 35[.]223[.]92[.]9 34[.]133[.]115[.]154 93[.]152[.]210[.]182 167[.]94[.]145[.]109 18[.]219[.]44[.]149 130[.]211[.]224[.]218 3[.]129[.]62[.]124 66[.]235[.]168[.]200 3[.]144[.]200[.]128 18[.]220[.]219[.]180 161[.]35[.]173[.]105 18[.]224[.]137[.]124 171[.]241[.]48[.]230
Like Comment
To view or add a comment, sign in
Starlight Intelligence

463 followers
1mo Edited
Report this post
03 Sep 2024 : Most Active Threat Indicators #Cybersecurity #Cyberattack #RCE #Botnet #IOC Top 3 Source Countries: - China (CN): The most active source of attacks, primarily targeting vulnerabilities in various devices, including NETGEAR and D-Link, as well as leveraging the Mozi botnet. - India (IN): Involved in multiple attacks, particularly exploiting vulnerabilities in GPON routers and utilizing the Mozi botnet. - Egypt (EG): Active in various attacks, especially using the Mirai botnet and exploiting vulnerabilities in MVPower DVR devices. https://lnkd.in/gMai5JaQ Source IP 3[.]26[.]100[.]116 79[.]124[.]59[.]226 61[.]53[.]89[.]85 119[.]6[.]253[.]248 202[.]112[.]238[.]240 106[.]75[.]164[.]51 112[.]248[.]114[.]239 42[.]225[.]193[.]164 117[.]72[.]79[.]140 120[.]85[.]184[.]220 124[.]114[.]153[.]6 112[.]94[.]99[.]239 106[.]75[.]137[.]178 42[.]53[.]59[.]145 103[.]46[.]169[.]74 120[.]86[.]253[.]25 120[.]85[.]183[.]249 216[.]172[.]136[.]57 41[.]40[.]192[.]242 197[.]52[.]161[.]203 41[.]234[.]86[.]149 197[.]62[.]89[.]101 156[.]194[.]138[.]249 41[.]36[.]156[.]147 172[.]167[.]1[.]162 87[.]236[.]176[.]160 176[.]58[.]119[.]138 213[.]199[.]53[.]204 101[.]36[.]108[.]191 103[.]40[.]103[.]227 199[.]45[.]154[.]141 43[.]250[.]173[.]139 103[.]203[.]72[.]28 117[.]235[.]35[.]231 27[.]122[.]61[.]237 117[.]219[.]168[.]218 202[.]170[.]201[.]64 117[.]242[.]193[.]30 117[.]248[.]170[.]23 61[.]1[.]48[.]100 59[.]183[.]105[.]10 117[.]213[.]119[.]207 220[.]158[.]158[.]91 103[.]203[.]72[.]68 117[.]207[.]37[.]181 59[.]88[.]238[.]90 117[.]208[.]225[.]127 117[.]235[.]61[.]115 117[.]255[.]98[.]254 59[.]93[.]29[.]149 117[.]242[.]106[.]144 59[.]184[.]240[.]217 59[.]88[.]238[.]192 89[.]42[.]138[.]126 5[.]59[.]248[.]145 185[.]129[.]194[.]31 196[.]115[.]213[.]252 47[.]254[.]204[.]189 105[.]112[.]224[.]13 45[.]95[.]147[.]211 154[.]213[.]186[.]19 92[.]249[.]48[.]213 175[.]107[.]3[.]187 175[.]107[.]38[.]254 175[.]107[.]0[.]244 37[.]221[.]64[.]68 87[.]226[.]217[.]110 147[.]45[.]76[.]168 128[.]199[.]157[.]193 188[.]166[.]214[.]211 185[.]194[.]107[.]243 195[.]133[.]129[.]175 188[.]166[.]255[.]153 1[.]10[.]212[.]33 118[.]172[.]117[.]204 45[.]147[.]46[.]174 188[.]163[.]81[.]123 104[.]152[.]52[.]32 199[.]45[.]154[.]122 162[.]142[.]125[.]40 47[.]236[.]162[.]8 18[.]188[.]254[.]189 38[.]45[.]72[.]89 40[.]118[.]211[.]231 3[.]20[.]203[.]81 162[.]142[.]125[.]47 18[.]188[.]16[.]45 3[.]16[.]206[.]52 104[.]152[.]52[.]44 23[.]94[.]160[.]137 165[.]22[.]185[.]63 37[.]60[.]229[.]236 129[.]153[.]174[.]37 52[.]15[.]61[.]73 185[.]102[.]112[.]187 64[.]226[.]104[.]1 13[.]59[.]215[.]179 3[.]144[.]221[.]18 171[.]241[.]53[.]222 14[.]225[.]206[.]94
Like Comment
To view or add a comment, sign in
Starlight Intelligence

463 followers
1mo
Report this post
20 Sep 2024 : Most Active Threat Indicators #Cybersecurity #Cyberattack #RCE #Botnet #IOC Top 3 Source Countries: - United States (US): The leading source of cyber attacks, with numerous instances involving vulnerabilities such as Apache Log4j Remote Code Execution and various deserialization flaws. - China (CN): Actively involved in attacks, particularly with the Mozi Botnet and various remote command injection vulnerabilities targeting GPON routers and D-Link devices. - India (IN): Notable for exploiting vulnerabilities such as HNAP SOAPAction-Header Command Execution and remote code execution in multiple routers. Source IP 3[.]26[.]100[.]15 61[.]176[.]196[.]65 61[.]53[.]72[.]140 113[.]228[.]154[.]197 219[.]157[.]236[.]55 39[.]144[.]229[.]242 42[.]176[.]98[.]170 123[.]10[.]211[.]63 182[.]121[.]119[.]73 178[.]128[.]203[.]135 64[.]227[.]113[.]25 156[.]215[.]230[.]163 138[.]68[.]144[.]227 125[.]164[.]18[.]83 116[.]68[.]162[.]186 103[.]15[.]254[.]121 117[.]255[.]103[.]69 59[.]184[.]251[.]27 59[.]91[.]95[.]165 59[.]95[.]83[.]196 103[.]200[.]84[.]71 117[.]216[.]155[.]41 202[.]66[.]166[.]210 117[.]206[.]70[.]116 117[.]248[.]169[.]56 8[.]221[.]139[.]116 14[.]5[.]239[.]250 106[.]244[.]183[.]242 91[.]92[.]240[.]88 91[.]92[.]254[.]223 2[.]57[.]122[.]161 176[.]226[.]133[.]219 51[.]79[.]206[.]143 45[.]147[.]46[.]174 172[.]70[.]135[.]26 172[.]70[.]42[.]183 172[.]70[.]38[.]111 172[.]70[.]43[.]21 172[.]70[.]135[.]72 172[.]70[.]174[.]108 172[.]68[.]244[.]199 172[.]70[.]134[.]43 172[.]70[.]39[.]38 172[.]71[.]194[.]126 172[.]70[.]175[.]185 172[.]70[.]43[.]79 172[.]70[.]134[.]75 23[.]225[.]71[.]158 20[.]118[.]68[.]252 172[.]71[.]222[.]177 172[.]206[.]143[.]250 172[.]70[.]42[.]61 52[.]14[.]241[.]36 13[.]64[.]193[.]184 172[.]70[.]38[.]119 162[.]158[.]79[.]222 128[.]105[.]144[.]165 172[.]70[.]134[.]250 172[.]70[.]135[.]25 13[.]59[.]67[.]240 172[.]68[.]15[.]156 162[.]158[.]78[.]38 172[.]70[.]43[.]20 172[.]70[.]39[.]76 172[.]71[.]222[.]81 172[.]70[.]39[.]178 172[.]70[.]175[.]21 172[.]70[.]134[.]236 172[.]70[.]174[.]199 172[.]71[.]222[.]173 172[.]71[.]194[.]158 162[.]158[.]78[.]237 172[.]71[.]223[.]178 172[.]70[.]175[.]155 172[.]71[.]194[.]129 172[.]70[.]43[.]24 172[.]168[.]40[.]233 172[.]71[.]194[.]20 52[.]183[.]224[.]68 172[.]70[.]39[.]80 172[.]71[.]223[.]148 172[.]71[.]194[.]170 172[.]70[.]39[.]112 172[.]70[.]34[.]212 4[.]255[.]100[.]236 172[.]70[.]39[.]164 216[.]24[.]212[.]26 172[.]70[.]175[.]34 172[.]70[.]39[.]159 172[.]70[.]38[.]47 172[.]70[.]134[.]18 172[.]70[.]174[.]111 172[.]70[.]174[.]23 162[.]158[.]78[.]229 172[.]71[.]194[.]204 172[.]70[.]34[.]50 18[.]117[.]96[.]209 3[.]14[.]28[.]249 172[.]70[.]35[.]98 103[.]75[.]183[.]91
Like Comment
To view or add a comment, sign in
Starlight Intelligence

463 followers
1w
Report this post
15 Oct 2024 : Most Active Threat Indicators #Cybersecurity #Cyberattack #RCE #Botnet #IOC Top 3 Source Countries: - United States (US): The leading source of cyber attacks, frequently employing various methods such as Nmap scanners and the SystemBC botnet, indicating a focus on exploiting vulnerabilities across different systems. - India (IN): Actively involved in numerous attacks, particularly targeting routers and devices with command injection vulnerabilities, reflecting a significant range of cyber threats from this region. - China (CN): Notable for its involvement in various attacks, especially through GPON home router vulnerabilities and command injections, showcasing a strong presence in global cyber threats. Source IP 3[.]106[.]118[.]207 94[.]156[.]166[.]59 177[.]173[.]85[.]2 27[.]204[.]227[.]93 123[.]12[.]151[.]87 36[.]150[.]214[.]3 113[.]229[.]191[.]39 123[.]4[.]232[.]98 60[.]171[.]147[.]102 222[.]137[.]144[.]113 112[.]94[.]96[.]221 122[.]96[.]215[.]135 182[.]120[.]52[.]51 115[.]55[.]165[.]13 42[.]4[.]212[.]4 218[.]61[.]110[.]172 36[.]43[.]64[.]173 123[.]5[.]170[.]225 130[.]61[.]235[.]125 207[.]154[.]222[.]216 172[.]104[.]131[.]156 178[.]20[.]30[.]190 54[.]36[.]144[.]237 62[.]84[.]190[.]143 199[.]45[.]154[.]115 8[.]218[.]12[.]181 159[.]89[.]174[.]77 117[.]219[.]38[.]116 117[.]254[.]165[.]89 180[.]188[.]227[.]249 117[.]209[.]25[.]10 117[.]209[.]11[.]102 180[.]94[.]34[.]111 117[.]209[.]88[.]40 120[.]61[.]247[.]199 110[.]227[.]202[.]138 117[.]209[.]18[.]179 117[.]211[.]209[.]238 117[.]197[.]170[.]63 117[.]209[.]28[.]22 103[.]69[.]216[.]118 117[.]217[.]135[.]172 103[.]199[.]200[.]72 27[.]111[.]75[.]23 117[.]235[.]210[.]195 59[.]97[.]123[.]233 117[.]209[.]84[.]174 47[.]53[.]58[.]157 49[.]103[.]32[.]106 119[.]28[.]149[.]185 41[.]140[.]205[.]171 175[.]107[.]0[.]147 175[.]107[.]2[.]60 175[.]107[.]41[.]206 212[.]200[.]238[.]150 178[.]72[.]68[.]242 77[.]239[.]216[.]230 149[.]255[.]13[.]79 94[.]139[.]254[.]41 37[.]224[.]118[.]19 185[.]213[.]25[.]237 47[.]84[.]73[.]221 139[.]59[.]227[.]246 178[.]128[.]221[.]13 47[.]236[.]102[.]50 128[.]199[.]254[.]49 3[.]17[.]56[.]63 206[.]168[.]34[.]38 70[.]36[.]99[.]15 45[.]79[.]115[.]59 199[.]45[.]154[.]114 170[.]64[.]159[.]46 206[.]168[.]34[.]126 18[.]216[.]91[.]222 165[.]232[.]187[.]128 46[.]37[.]116[.]159 185[.]81[.]144[.]224 3[.]145[.]128[.]48 107[.]174[.]45[.]38 18[.]224[.]171[.]193 3[.]17[.]11[.]23 18[.]188[.]24[.]102 4[.]156[.]21[.]114 34[.]145[.]238[.]17 18[.]219[.]156[.]63 35[.]223[.]7[.]232 172[.]169[.]205[.]242 18[.]222[.]134[.]21 172[.]169[.]207[.]117 52[.]189[.]75[.]157 52[.]15[.]145[.]11 3[.]143[.]111[.]160 34[.]133[.]183[.]74 20[.]118[.]68[.]250 3[.]22[.]117[.]159 34[.]173[.]132[.]176 3[.]19[.]74[.]214 18[.]117[.]222[.]230 18[.]224[.]173[.]126 193[.]202[.]83[.]31
Like Comment
To view or add a comment, sign in
Starlight Intelligence

463 followers
1mo
Report this post
25 Sep 2024 : Most Active Threat Indicators #Cybersecurity #Cyberattack #RCE #Botnet #IOC Top 3 Source Countries: - China (CN): The leading source of cyber attacks, primarily through the Mozi Botnet, which is frequently observed exploiting vulnerabilities across various devices. - India (IN): Actively involved in multiple attacks, particularly through the Mozi Botnet and various remote command injection vulnerabilities targeting GPON routers. - United States (US): Notable for various attack types, including ZGrab scanning activities and vulnerabilities in web servers. Source IP 3[.]26[.]100[.]69 24[.]54[.]92[.]74 39[.]72[.]63[.]20 42[.]85[.]127[.]26 116[.]2[.]129[.]153 42[.]224[.]213[.]7 60[.]19[.]220[.]122 113[.]205[.]171[.]53 113[.]239[.]80[.]11 117[.]146[.]92[.]46 42[.]225[.]83[.]40 113[.]236[.]101[.]19 42[.]238[.]174[.]75 42[.]236[.]210[.]125 222[.]140[.]174[.]205 219[.]157[.]233[.]160 120[.]238[.]189[.]72 119[.]165[.]67[.]172 124[.]6[.]90[.]204 182[.]123[.]208[.]157 14[.]154[.]136[.]59 113[.]230[.]96[.]244 42[.]228[.]224[.]231 51[.]8[.]223[.]89 134[.]122[.]84[.]190 83[.]41[.]193[.]111 162[.]158[.]179[.]67 172[.]71[.]215[.]96 172[.]68[.]225[.]72 162[.]158[.]178[.]146 172[.]68[.]225[.]102 162[.]158[.]179[.]147 172[.]71[.]218[.]227 162[.]158[.]179[.]168 172[.]71[.]214[.]176 172[.]68[.]225[.]73 162[.]158[.]114[.]76 172[.]71[.]219[.]43 172[.]71[.]214[.]41 172[.]71[.]218[.]9 172[.]68[.]225[.]103 172[.]68[.]225[.]35 172[.]68[.]225[.]137 180[.]249[.]187[.]175 202[.]148[.]58[.]236 103[.]247[.]52[.]180 103[.]208[.]233[.]15 117[.]209[.]80[.]159 45[.]115[.]89[.]83 59[.]178[.]31[.]30 117[.]248[.]173[.]236 103[.]208[.]233[.]28 220[.]158[.]158[.]114 103[.]203[.]72[.]107 116[.]73[.]164[.]32 117[.]213[.]245[.]35 117[.]206[.]181[.]112 117[.]197[.]170[.]102 59[.]88[.]185[.]22 220[.]158[.]159[.]23 59[.]89[.]9[.]207 117[.]208[.]211[.]102 59[.]183[.]101[.]132 59[.]91[.]88[.]184 103[.]247[.]52[.]19 117[.]254[.]8[.]80 103[.]247[.]52[.]141 103[.]200[.]87[.]136 59[.]178[.]186[.]206 117[.]255[.]154[.]174 117[.]209[.]0[.]184 117[.]219[.]45[.]225 124[.]156[.]37[.]142 220[.]158[.]158[.]170 59[.]88[.]233[.]62 59[.]95[.]128[.]93 103[.]246[.]228[.]92 49[.]166[.]89[.]7 175[.]214[.]78[.]244 188[.]166[.]76[.]182 85[.]252[.]76[.]193 91[.]234[.]62[.]253 62[.]217[.]187[.]3 152[.]42[.]247[.]34 125[.]227[.]156[.]180 52[.]226[.]158[.]167 57[.]151[.]48[.]99 48[.]217[.]212[.]219 3[.]142[.]50[.]153 18[.]224[.]107[.]30 13[.]64[.]108[.]135 34[.]45[.]245[.]192 172[.]169[.]5[.]14 13[.]64[.]194[.]18 13[.]72[.]114[.]181 13[.]83[.]41[.]98 104[.]209[.]34[.]218 13[.]64[.]196[.]206 18[.]117[.]173[.]115 185[.]240[.]64[.]13
Like Comment
To view or add a comment, sign in

463 followers

View Profile Follow

Starlight Intelligence’s Post

More Relevant Posts

Explore topics