Threat_Intelligence_Report

Trends



  • China is on top of the list with 580 unique attackers (22.8%)
  • Command and execution was the top exploit event of the week with 61% of occurrences



Top Attacker by Country


CountryNo. of AttackersPercentage
China58022.8%
United States55221.7%
Brazil2399.4%
Russian Federation1837.2%
France1244.9%
Republic of Korea953.7%
Netherlands943.7%
India853.3%
United Kingdom682.7%
Ukraine642.5%
Vietnam622.4%
Italy562.2%
Indonesia542.1%
Germany542.1%
Australia401.6%
Taiwan391.5%
Turkey331.3%
Poland311.2%
Hong Kong301.2%


Top Cyber Attackers by Country October 29 - November 4 2018



Threat Geolocation


Cyber Security Threat Geolocations October 29 - November 4 2018



Top Attacking Hosts


HostOccurrences
20.1.174.5454
193.201.224.15815
185.94.111.112
94.102.49.12310
71.6.202.1989
94.102.63.278




Top Alarms



AlarmNo. of Occurrences
OTX Indicators of Compromise - PULSE116
Database Attack - Stored Process Access - Attack52
Bruteforce Authentication - SSH48
Attack Tool Detected - Attack2


Comparison from Previous Report


AlarmNo. of Occurrences
OTX Indicators of Compromise - PULSE131
Database Attack - Stored Process Access - Attack52
Bruteforce Authentication - SSH50
Attack Tool Detected - Attack15
WebServer Attack - Attack2
WebServer Attack - XSS1



Red Piranha - Open Threat Exchange


Pulses SubscribedIndicatorsLast UpdatedNumber of AlarmsNumber of Events
5,905881,2492018-11-04 22:57:226,1608,370




Vulnerabilities



Vuln: OpenSSL CVE-2018-0734 Side Channel Attack Information Disclosure Vulnerability
10/30/2018, 8:00:00 PM
OpenSSL CVE-2018-0734 Side Channel Attack Information Disclosure Vulnerability

Vuln: Mozilla Thunderbird MFSA2018-28 Multiple Security Vulnerabilities
10/30/2018, 8:00:00 PM
Mozilla Thunderbird MFSA2018-28 Multiple Security Vulnerabilities

Details