IPMediumSignal 34/100
159.89.33.34
Location
United StatesClifton, NJ
ASN
AS14061
DigitalOcean, LLC
First Seen
Jul 5, 2025
Last Seen
Mar 28, 2026
Found in 11 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
34%
Signal Score
34 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryUnited States
United StatesRegionClifton, NJ
ASNAS14061
OrganizationDigitalOcean, LLC
Feed Intelligence Summary
11 reports34% confidence
11
Source reports
34%
Confidence score
Category tags
abuseaccess controlactive scanactive scanningadbhoney activityadbhoney honeypotapacheapache attackerattackbad reputationbotnetbotnet activitybrute forcebrute force attackbrute_forcecisco devicecisco exploit attemptscisco_exploitcloud computingcloud infrastructurecloud migrationcloud securitycloud storagecommunication protocolcowrie activitycowrie honeypotcowrie_attackcredential accesscredential stuffingcredential_accessdata exfiltrationdata store exposuredecoy systemdevice managementdionaea activitydionaea honeypotenterprise networkingexploitation activityhoneytrap honeypotidentity & access exploitationindicatorinitial_accesslamplamp exploit attemptslamp_exploitmalicious activitymalwaremalware behaviourmalware capturemulti-cloud managementnetworknetwork infrastructurenetwork intrusion attemptsnetwork scanningnetwork securitynorth americapassword attacksreconnaissanceresearchedresource hijackingscannersecurity policyself-signedsentrypeer botnetsftp attacksftp_attacksip brute forcesip_attackssh attackssh monitoringssh_bruteforcet1021t1040t1041t1059t1071.001t1078t1110t1110.001t1110.002t1110.003t1110.004t1190t1204.002t1496t1499.001t1589t1595t1595.001t1595.002t1595.003tannertelecommunicationsthreat actorthreat detectionthreat intelligencethreat preventiontor nodeunited statesvoipvoip attack
Activity Timeline
Mar 28Mar 28
Threat Activity Heatmap
· Peak: 2026-03-28LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreLow Risk
34
SIGNAL
Signal Score
34%
Confidence
11
Reports
First seenJul 5, 2025
Last seenMar 28, 2026
GeolocationUS
CountryUnited States
LocationClifton, NJ
ASNAS14061
OrgDigitalOcean, LLC
Coords40.8364, -74.1403
VirusTotal
Not checked
WHOIS
- raw
- NetRange: 159.89.0.0 - 159.89.255.255 CIDR: 159.89.0.0/16 NetName: DIGITALOCEAN-159-89-0-0 NetHandle: NET-159-89-0-0-1 Parent: NET159 (NET-159-0-0-0-0) NetType: Direct Allocation OriginAS: Organization: DigitalOcean, LLC (DO-13) RegDate: 2017-07-07 Updated: 2020-04-03 Comment: Routing and Peering Policy can be found at https://www.as14061.net Comment: Comment: Please submit abuse reports at https://www.digitalocean.com/company/contact/#abuse Ref: https://rdap.arin.net/registry/ip/159.89.0.0 OrgName: DigitalOcean, LLC OrgId: DO-13 Address: 105 Edgeview Drive, Suite 425 City: Broomfield StateProv: CO PostalCode: 80021 Country: US RegDate: 2012-05-14 Updated: 2025-04-11 Ref: https://rdap.arin.net/registry/entity/DO-13 OrgNOCHandle: NOC32014-ARIN OrgNOCName: Network Operations Center OrgNOCPhone: +1-646-827-4366 OrgNOCEmail: [email protected] OrgNOCRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN OrgAbuseHandle: DIGIT19-ARIN OrgAbuseName: DigitalOcean Abuse OrgAbusePhone: +1-646-827-4366 OrgAbuseEmail: [email protected] OrgAbuseRef: https://rdap.arin.net/registry/entity/DIGIT19-ARIN OrgTechHandle: NOC32014-ARIN OrgTechName: Network Operations Center OrgTechPhone: +1-646-827-4366 OrgTechEmail: [email protected] OrgTechRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN
- references
- https://github.com/telekom-security/tpotce
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 11 months ago · Last seen 2 months ago
Appeared in 11 threat reports