๐บ๐ธ
kosada.com
2026-07-06 13:37:45
(2 days ago)
Web bot: denial-of-service flood
DDoS Attack
Bad Web Bot
Anonymous
2026-07-05 16:30:50
(3 days ago)
Large-scale coordinated botnet (200+k IPs). Attacker: mikhail-smirnov-79830323 (LinkedIn/profile ID) ...
show more
Large-scale coordinated botnet (200+k IPs). Attacker: mikhail-smirnov-79830323 (LinkedIn/profile ID) employed by Angara Technologies Group (Explicitly identified himself as enemy a week before attack began) | Attack Signature Blocked: /brands/clearone/shopby/manufacturer-rcf-lsi-brightline-clearone-xyz.html?stock=1 | UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/105.0.0.0 Safari/537.3 | (Magento Site)
show less
Hacking
Bad Web Bot
Anonymous
2026-06-11 10:58:04
(3 weeks ago)
194.31.93.181 - - [11/Jun/2026:18:58:04 +0800] "GET /xmlrpc.php HTTP/1.1" 405 42 "-" "Mozilla/5.0 (W ...
show more
194.31.93.181 - - [11/Jun/2026:18:58:04 +0800] "GET /xmlrpc.php HTTP/1.1" 405 42 "-" "Mozilla/5.0 (Windows NT 6.1; lij-IT; rv:1.9.1.20) Gecko/6364-12-22 04:59:24.020630 Firefox/3.8"
...
show less
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-12 23:22:14
(1 month ago)
(mod_security) mod_security (id:210381) triggered by 194.31.93.181 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210381) triggered by 194.31.93.181 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 12 19:22:06.713984 2026] [security2:error] [pid 30278:tid 30284] [client 194.31.93.181:55462] ModSecurity: Access denied with code 403 (phase 2). Invalid URL Encoding: Non-hexadecimal digits used at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "82"] [id "210381"] [rev "6"] [msg "COMODO WAF: URL Encoding Abuse Attack Attempt||www.mentzlaw.com|F|4"] [data "REQUEST_URI=/louisianatruckaccidentlawyer/%url%"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.mentzlaw.com"] [uri "/louisianatruckaccidentlawyer/%url%"] [unique_id "agO2Hpl392Xg9WzvVJE5wgAAAMM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ฆ
polycoda
2026-04-15 12:34:17
(2 months ago)
๐ฅถ Part of massive botnet scraping campaign that nearly turned into a DDoS on 2025-11-27
DDoS Attack
Anonymous
2025-12-19 15:54:47
(6 months ago)
Attempted brute force login to web vpn 1 time(s); last attempt for 2025.12.19 is noted in report tim ...
show more
Attempted brute force login to web vpn 1 time(s); last attempt for 2025.12.19 is noted in report timestamp
show less
Hacking
Brute-Force
๐ฉ๐ช
HandyTreff.de
2025-12-06 18:22:07
(7 months ago)
Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -24.204 (Bad < -10 / Very Bad < -20 ...
show more
Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -24.204 (Bad < -10 / Very Bad < -20 / Extreme < -35) | UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/135.0.0.0 Sa
show less
Bad Web Bot
Web App Attack
๐ฉ๐ช
SMARTNET
2025-11-26 07:00:13
(7 months ago)
Aisuru(Mirai variant) DDoS
DDoS Attack
๐ฎ๐ฉ
hermawan
2025-11-19 12:09:06
(7 months ago)
[Wed Nov 19 19:07:31.922446 2025] [security2:error] [pid 258054:tid 140589823674048] [client 194.31. ...
show more
[Wed Nov 19 19:07:31.922446 2025] [security2:error] [pid 258054:tid 140589823674048] [client 194.31.93.181:22239] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "WOW64" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.20.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "247"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: WOW64 found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 ADG/11.0.2470 AOLBUILD/11.0.2470 Safari/537.36 request_line = GET /index.php/informasi-iklim/infografis-iklim/infografis-harian/suhu-maksimum/555561559-suhu-maksimum-harian-di-jawa-timur-tanggal-17-18-november-tahun-2024 HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/informasi-iklim/infografis-iklim/infografis-harian/suhu-maksimum/555561559-suhu-maksimum-harian-di-jawa-timur-tanggal-17-18-november-tahun-2024"] [unique
...
show less
Hacking
Web App Attack
๐ณ๐ฑ
exxos
2025-08-30 13:03:01
(10 months ago)
Attacks with Bad user agents
Hacking
๐ณ๐ฑ
exxos
2025-08-24 18:03:01
(10 months ago)
Attacks with Bad user agents
Hacking
๐ณ๐ฑ
exxos
2025-08-04 22:10:01
(11 months ago)
HTTP1.x attacks
DDoS Attack
๐ช๐ธ
Global Cyber Police
2025-07-28 09:26:58
(11 months ago)
Malicious bot activity detected: Hitting honeypot page. Part of massive botnet.
DDoS Attack
Hacking
SQL Injection
Spoofing
Brute-Force
Bad Web Bot
Web App Attack
๐ช๐ธ
Global Cyber Police
2025-07-27 17:09:30
(11 months ago)
Malicious bot activity detected: Hitting honeypot page (200 OK with 258/259 bytes sent).
Port Scan
Brute-Force
Web App Attack
Anonymous
2024-11-13 10:43:21
(1 year ago)
Unauthorized connection attempt
Port Scan
Hacking
Exploited Host