๐ช๐ธ
librebit
2026-06-27 13:02:36
(5 days ago)
Brute force
Brute-Force
Anonymous
2026-06-22 00:30:16
(1 week ago)
Large-scale coordinated botnet (200+k IPs). Attacker: mikhail-smirnov-79830323 (LinkedIn/profile ID) ...
show more
Large-scale coordinated botnet (200+k IPs). Attacker: mikhail-smirnov-79830323 (LinkedIn/profile ID) employed by Angara Technologies Group (Explicitly identified himself as enemy a week before attack began) | Attack Signature Blocked: /wishlist/index/add/product/237/form_key/yOMn9rqkGETrfYv9/ | UA: Mozilla/5.0 (Linux; Android 9) AppleWebKit/533.0 (KHTML, like Gecko) Chrome/24.0.867.0 Safari/533.0 | (Magento Site)
show less
Hacking
Bad Web Bot
Web App Attack
๐ฎ๐ฑ
spd.co.il
2026-05-02 07:01:56
(2 months ago)
Web application attack detected
Hacking
Web App Attack
๐ฎ๐ณ
evicky2002
2026-05-02 06:00:00
(2 months ago)
Confirmed malicious by STILWaters CTI platform (score=100, sources=1)
Hacking
Brute-Force
SSH
Anonymous
2026-04-30 18:02:29
(2 months ago)
Web attack
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-30 17:48:17
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 212.237.120.204 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 212.237.120.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 30 13:48:11.328360 2026] [security2:error] [pid 23419:tid 23419] [client 212.237.120.204:47963] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ageiron.com"] [uri "/.git/HEAD"] [unique_id "afOV23Y0iUknTykIxK7U7QAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐น๐ญ
MWA SOC
2026-04-30 15:40:10
(2 months ago)
Hacking
๐ซ๐ท
Thaliruth
2026-04-30 15:13:46
(2 months ago)
212.237.120.204 - - [30/Apr/2026:17:13:45 +0200] "GET /.git/HEAD HTTP/1.1" 301 162 "-" "Mozilla/5.0 ...
show more
212.237.120.204 - - [30/Apr/2026:17:13:45 +0200] "GET /.git/HEAD HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:121.0) Gecko/20100101 Firefox/121.0"
212.237.120.204 - - [30/Apr/2026:17:13:46 +0200] "GET /.git/HEAD HTTP/1.0" 404 6536 "http://reiter-von-rohan.com/.git/HEAD" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:121.0) Gecko/20100101 Firefox/121.0"
...
show less
Brute-Force
Web App Attack
๐ฌ๐ง
consul.to
2026-04-30 14:02:31
(2 months ago)
Web attack/malicious scanning detected
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-30 12:11:59
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 212.237.120.204 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 212.237.120.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 30 08:11:54.234544 2026] [security2:error] [pid 16745:tid 16745] [client 212.237.120.204:54116] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cathayexpress.com"] [uri "/.git/HEAD"] [unique_id "afNHClqhJfktraRLFzwaaAAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
big-cloud.nl
2026-04-30 11:48:48
(2 months ago)
Try to access /.git/HEAD
Web App Attack
๐ฑ๐ป
garmtech.com
2026-04-30 11:31:02
(2 months ago)
IM360 WAF: Laravel .env file access
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-30 11:02:04
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 212.237.120.204 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 212.237.120.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 30 07:01:56.579027 2026] [security2:error] [pid 9210:tid 9210] [client 212.237.120.204:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.socialstudiesforkids.com"] [uri "/.git/HEAD"] [unique_id "afM2pGUrGYTW5n_uy66mCQAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
rdpguard.com
2026-04-30 10:32:39
(2 months ago)
RdpGuard detected brute-force attempt on HTTP
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-04-30 10:25:22
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 212.237.120.204 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 212.237.120.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 30 06:25:17.817957 2026] [security2:error] [pid 20933:tid 20933] [client 212.237.120.204:51070] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.rimworld.com"] [uri "/notra//.git/HEAD"] [unique_id "afMuDfdrpDBBahJM_7iJOgAAABo"], referer: http://northernohiotra.com/.git/HEAD
show less
Brute-Force
Bad Web Bot
Web App Attack