๐น๐ท
Threat.live
2026-07-09 18:15:07
(16 hours ago)
Suspicious Connection Attempts
Brute-Force
๐ซ๐ท
Tilellit.PRO
2026-07-07 10:33:23
(2 days ago)
WooCommerce YITH AJAX Filder product_cat filter flood attempt with taxonomies
DDoS Attack
Bad Web Bot
๐บ๐ธ
kosada.com
2026-06-29 15:34:30
(1 week ago)
Web bot: denial-of-service flood
DDoS Attack
Bad Web Bot
๐ฉ๐ช
Vegascosmetics
2026-06-23 07:43:34
(2 weeks ago)
(Kingcopy.org-AI-IDS-Report):IP automatically blocked after obfuscated redirect. Vegas Security
DDoS Attack
Hacking
Exploited Host
๐จ๐ฆ
polycoda
2026-06-20 10:48:51
(2 weeks ago)
๐ฅถ Part of massive botnet scraping campaign that nearly turned into a DDoS on 2025-11-27
DDoS Attack
๐ฎ๐ฉ
hermawan
2026-06-14 03:02:53
(3 weeks ago)
[Sun Jun 14 10:02:50.951757 2026] [security2:error] [pid 1433121:tid 139664531896000] [client 103.15 ...
show more
[Sun Jun 14 10:02:50.951757 2026] [security2:error] [pid 1433121:tid 139664531896000] [client 103.150.68.123:51738] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.bmkg.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "582"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.bmkg.go.id found within REQUEST_HEADERS:Referer: https://www.bmkg.go.id/ request_line = GET /index.php HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php"] [unique_id "ai4Z2sTOlzlEuaMBcTG5uAAAFgM"], referer https://www.bmkg.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[1433142] [6zr+8e1DiFI] [ai4Z2sTOlzlEuaMBcTG5uAAAFgM] keep_alive=[1] [2026-06-14 10:02:50.951761] [R:ai4Z2sTOlzlEuaMBcTG5uAAAFgM] UA:'Mozilla/5.0 (Linux; Android 10; SM-A515F/DS) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.34 Mobile Safari/537.36 EdgA/83.0.478.25' Host:'stak
...
show less
Email Spam
Hacking
Anonymous
2026-06-10 18:45:24
(4 weeks ago)
Botnet activity. Attribution: Angara Technologies Group / mikhail-smirnov-79830322 | Attack Signatur ...
show more
Botnet activity. Attribution: Angara Technologies Group / mikhail-smirnov-79830322 | Attack Signature Blocked: /wishlist/index/add/product/13396/form_key/MrJAJ9F2p6SgTyh0/ | UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like G...
show less
Hacking
Bad Web Bot
Web App Attack
๐ฑ๐ป
garmtech.com
2026-05-22 07:56:18
(1 month ago)
IM360 WAF: Prohibited WordPress username login/registration
Web App Attack
๐จ๐ฆ
polycoda
2026-03-19 10:22:22
(3 months ago)
๐ Probes for tons of inexistent files and PHP scripts
Hacking
Web App Attack
Anonymous
2026-02-04 12:27:20
(5 months ago)
DDoS botnet 510.000+ IPs; URL with bing/trustpilot/githubhelp and %C2%A4 or \xc2\xa4. NEW 09/2025: a ...
show more
DDoS botnet 510.000+ IPs; URL with bing/trustpilot/githubhelp and %C2%A4 or \xc2\xa4. NEW 09/2025: amplification attacks via third-parties e.g. HTTP_USER_AGENT facebookexternalhit/meta-externalagent/meta-externalfetcher or IPs from googleusercontent.com with fake HTTP_REFERER foxnews.com/newsweek.com/upwork.com/activision.com/... Port 443.
show less
DDoS Attack
Bad Web Bot
Web App Attack
Anonymous
2026-01-27 15:04:41
(5 months ago)
Distributed web crawl botnet attack (like Mellowtel), likely illicit scraping of AI training data to ...
show more
Distributed web crawl botnet attack (like Mellowtel), likely illicit scraping of AI training data to bypass firewall/robots.txt restrictions in thread-post.asp
show less
Bad Web Bot
Exploited Host
๐ฎ๐น
VHosting
2025-12-23 17:00:27
(6 months ago)
Detected attack and reported by a human
DDoS Attack
Brute-Force
Bad Web Bot
Exploited Host
Web App Attack
SSH
๐จ๐ญ
backslash
2025-12-14 08:25:08
(6 months ago)
block ruleset DA4A07AEE48B136A3922182BE8AA8BFBC1840803
Bad Web Bot
๐ฎ๐ฉ
hermawan
2025-11-26 17:01:59
(7 months ago)
[Wed Nov 26 23:25:51.912397 2025] [security2:error] [pid 56321:tid 139900633376448] [client 103.150. ...
show more
[Wed Nov 26 23:25:51.912397 2025] [security2:error] [pid 56321:tid 139900633376448] [client 103.150.68.123:48244] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "AOLBUILD" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.20.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "252"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: AOLBUILD found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 AOL/11.0 AOLBUILD/11.0.1839 Safari/537.36 request_line = GET /index.php/prakiraan-musim/4243-prakiraan-musim-kemarau/prakiraan-sifat-hujan-musim-kemarau/prakiraan-sifat-hujan-musim-kemarau-di-propinsi-jawa-timur/prakiraan-6-bulanan-sifat-hujan-musim-kemarau-tahun-2024-zona-musim-di-provinsi-jawa-timur HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-malang.info"] [uri "/index.php/prakiraan-musim/4243-prakiraan-musim-kemarau/prakiraan-sifat-hujan-musi
...
show less
Hacking
Web App Attack
Anonymous
2025-11-19 19:42:12
(7 months ago)
scanning http requests from known botnet
Web App Attack