IPMediumSignal 38/100
192.241.255.9
Location
United StatesSecaucus, NY
ASN
AS14061
Digital Ocean
First Seen
Jul 7, 2025
Last Seen
Apr 20, 2026
Found in 12 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
38%
Signal Score
38 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryUnited States
United StatesRegionSecaucus, NY
ASNAS14061
OrganizationDigital Ocean
Feed Intelligence Summary
12 reports38% confidence
12
Source reports
38%
Confidence score
Category tags
abuseactive scanactive scanningadbhoney activityadbhoney honeypotapacheapache attackerattackbad reputationbotnetbotnet activitybrute forcebrute force attackbrute force attemptbrute_forcecisco attackcisco devicecisco device targetingcisco exploit attemptscisco_exploitcommunication protocolcowrie activitycowrie honeypotcowrie_attackcredential accesscredential stuffingcredential_accessdata exfiltrationdata store exposuredatabase attackdecoy systemdevice managementdionaea activitydionaea capturedionaea honeypotenterprise networkingexploitation activityheralding behaviorhoneytrap honeypotidentity & access exploitationindicatorinitial_accesslamplamp attacklamp exploit attemptslamp stack targetinglamp_exploitmalicious activitymalicious network activitymalwaremalware behaviourmalware capturenetworknetwork infrastructurenetwork intrusion attemptsnetwork scanningnetwork securitynorth americapassword attacksransomwarereconnaissanceresearchedresource hijackingscannerscripting attackssentrypeer botnetsentrypeer detectionsftp activitysftp attacksftp_attacksip brute forcesip scanningsip_attacksocradar honeypotssh attackssh monitoringssh_bruteforcet1021t1040t1041t1059t1059.007t1071.001t1078t1110t1110.001t1110.002t1110.003t1110.004t1190t1203t1204.002t1496t1499.001t1589t1595t1595.001t1595.002t1595.003tannertargeting databasetelecommunicationsthreat actorthreat detectionthreat intelligencetor nodetpotceunited statesvoipvoip attackweb attackweb exploitation
Activity Timeline
Apr 20Apr 20
Threat Activity Heatmap
· Peak: 2026-04-20LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreLow Risk
38
SIGNAL
Signal Score
38%
Confidence
12
Reports
First seenJul 7, 2025
Last seenApr 20, 2026
GeolocationUS
CountryUnited States
LocationSecaucus, NY
ASNAS14061
OrgDigital Ocean
Coords40.7316, -73.9985
VirusTotal
Not checked
WHOIS
- raw
- NetRange: 192.241.128.0 - 192.241.255.255 CIDR: 192.241.128.0/17 NetName: DIGITALOCEAN-192-241-128-0 NetHandle: NET-192-241-128-0-1 Parent: NET192 (NET-192-0-0-0-0) NetType: Direct Allocation OriginAS: Organization: DigitalOcean, LLC (DO-13) RegDate: 2013-06-10 Updated: 2020-04-03 Comment: Routing and Peering Policy can be found at https://www.as14061.net Comment: Comment: Please submit abuse reports at https://www.digitalocean.com/company/contact/#abuse Ref: https://rdap.arin.net/registry/ip/192.241.128.0 OrgName: DigitalOcean, LLC OrgId: DO-13 Address: 105 Edgeview Drive, Suite 425 City: Broomfield StateProv: CO PostalCode: 80021 Country: US RegDate: 2012-05-14 Updated: 2025-04-11 Ref: https://rdap.arin.net/registry/entity/DO-13 OrgAbuseHandle: DIGIT19-ARIN OrgAbuseName: DigitalOcean Abuse OrgAbusePhone: +1-646-827-4366 OrgAbuseEmail: [email protected] OrgAbuseRef: https://rdap.arin.net/registry/entity/DIGIT19-ARIN OrgNOCHandle: NOC32014-ARIN OrgNOCName: Network Operations Center OrgNOCPhone: +1-646-827-4366 OrgNOCEmail: [email protected] OrgNOCRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN OrgTechHandle: NOC32014-ARIN OrgTechName: Network Operations Center OrgTechPhone: +1-646-827-4366 OrgTechEmail: [email protected] OrgTechRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN
- references
- https://github.com/telekom-security/tpotce
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 11 months ago · Last seen 2 months ago
Appeared in 12 threat reports