IOC Radar
IPMediumSignal 72/100

134.122.0.42

Location
United StatesUnited States
Clifton, NJ
ASN
AS14061
DigitalOcean, LLC
First Seen
Mar 12, 2026
Last Seen
Apr 24, 2026
Mar 12
First Seen
93d ago
Apr 24
Last Seen
50d ago
7
Reports
source reports
72%
Confidence
medium
2/91
VirusTotal
detections
Found in 7 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
72%
Signal Score
72 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

4 techniques

Network Information

CountryUSUnited States
RegionClifton, NJ
ASNAS14061
OrganizationDigitalOcean, LLC

Feed Intelligence Summary

7 reports72% confidence
7
Source reports
72%
Confidence score
Category tags
abuseactive scanactive scanningbad reputationbrute forcebrute force attackercredential accesscredential stuffingdigital oceanexploitation activityhackingidentity & access exploitationindicatornetworknorth americaportscanreconnaissanceresearchedscannerscannersservice scanssh attackt1110.002t1595.001t1595.002t1595.003united states

Activity Timeline

1 total obs
Apr 24Apr 24

Threat Activity Heatmap

· Peak: 2026-04-24
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Intelligence SummaryAI Generated

This indicator of compromise (IOC), an IPv4 address, signifies a potential reconnaissance and brute-force attack vector that demands immediate attention. With a high threat score of 71.9, this IP address has been extensively identified across multiple threat intelligence feeds as engaging in malicious activities such as vulnerability scanning and credential brute-forcing. If communication with this IP is detected within our environment, it could indicate an adversary actively attempting to gain …

Threat ScoreHigh Risk
72
SIGNAL
Signal Score
72%
Confidence
7
Reports
First seenMar 12, 2026
Last seenApr 24, 2026
GeolocationUS
CountryUnited States
LocationClifton, NJ
ASNAS14061
OrgDigitalOcean, LLC
Coords40.8364, -74.1403

VirusTotal

2/ 91vendors flagged
2% detection rateJun 3, 2026

WHOIS

description
IPv4 hosts detected port scanning DigitalOcean London (UK) honeypot
raw
NetRange: 134.122.0.0 - 134.122.127.255 CIDR: 134.122.0.0/17 NetName: DIGITALOCEAN-134-122-0-0 NetHandle: NET-134-122-0-0-1 Parent: NET134 (NET-134-0-0-0-0) NetType: Direct Allocation OriginAS: Organization: DigitalOcean, LLC (DO-13) RegDate: 2019-09-06 Updated: 2020-04-03 Comment: Routing and Peering Policy can be found at https://www.as14061.net Comment: Comment: Please submit abuse reports at https://www.digitalocean.com/company/contact/#abuse Ref: https://rdap.arin.net/registry/ip/134.122.0.0 OrgName: DigitalOcean, LLC OrgId: DO-13 Address: 105 Edgeview Drive, Suite 425 City: Broomfield StateProv: CO PostalCode: 80021 Country: US RegDate: 2012-05-14 Updated: 2025-04-11 Ref: https://rdap.arin.net/registry/entity/DO-13 OrgNOCHandle: NOC32014-ARIN OrgNOCName: Network Operations Center OrgNOCPhone: +1-646-827-4366 OrgNOCEmail: [email protected] OrgNOCRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN OrgAbuseHandle: DIGIT19-ARIN OrgAbuseName: DigitalOcean Abuse OrgAbusePhone: +1-646-827-4366 OrgAbuseEmail: [email protected] OrgAbuseRef: https://rdap.arin.net/registry/entity/DIGIT19-ARIN OrgTechHandle: NOC32014-ARIN OrgTechName: Network Operations Center OrgTechPhone: +1-646-827-4366 OrgTechEmail: [email protected] OrgTechRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN
references
https://jamesbrine.com.au/digitaloceanlondon-portscan-bruteforce-ip-list-2026-04-16/, https://jamesbrine.com.au

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 3 months ago · Last seen 1 month ago
Appeared in 7 threat reports