Between 19 December 2025 at 22:00 SAST and 20 December 2025 at 00:19 SAST, IP address 64.176.15.248 ...
show moreBetween 19 December 2025 at 22:00 SAST and 20 December 2025 at 00:19 SAST, IP address 64.176.15.248 performed multiple malicious HTTP exploit attempts against several government domains hosted behind a firewall device. All requests were blocked, but activity was clearly malicious, automated, and targeted.
show less
Phishing Incident response playbook
Malicious sign in from an IP address associated with recognized ...
show morePhishing Incident response playbook
Malicious sign in from an IP address associated with recognized AiTM attack infrastructure
show less
I have identified a phishing email circulating at our organisation, and as a proactive response, ple ...
show moreI have identified a phishing email circulating at our organisation, and as a proactive response, please block the link hxxps[://]emailserverupgrades[.]site/out/
show less
DNS CompromiseDNS PoisoningPhishingEmail SpamHackingBrute-ForceExploited HostSSH
hxxp://38.175.195[.]13:8086/en-us/features/integrationms-cab-compressed=fdgdfbglgeeegfegdifcclfggpfb ...
show morehxxp://38.175.195[.]13:8086/en-us/features/integrationms-cab-compressed=fdgdfbglgeeegfegdifcclfggpfbfdhaekgidagjhkgfhgeffjedemglgofhffekeohegkfegpgmdbedehheddgdgjhfedemhafcejepebdbehehdbfifhendhdeepebclelhggmdggghbclhdgleldaejgfdjfbgofhhheiffenfkfffigneieledepheeifghfeofegbgieihfgjgeeheidcehggekfbfhcpeigdedgkgieidchffdhcehgkgigefhgigcgbdffffefdhjhigmgcendhepclglddggdifddceegchjeneeeghdhiglejhdfieihjejgjgnghdigldn.cab
show less
DNS PoisoningDDoS AttackOpen ProxyWeb SpamVPN IPSpoofingBrute-ForceExploited Host
By clicking “Accept all”, you agree to the storing of cookies on your device to remember preferences and
analyze site usage.
Read more
- Required to log into your AbuseIPDB account, and store these cookie preferences.