IPMediumSignal 71/100

`206.217.206.96`

Location

United States

Dallas, TX

First Seen

Oct 25, 2024

Last Seen

Feb 2, 2026

Oct 25

First Seen

607d ago

Feb 2

Last Seen

142d ago

Reports

source reports

71%

Confidence

medium

Found in 8 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.

IPv4 Address

Network layer indicator observed in threat reports.

MISP Category

Network Activity

Confidence

71%

Signal Score

71 / 100

IDS Rule

Threat Context

MITRE ATT&CK TTPs

25 techniques

Network Information

Country

United States

RegionDallas, TX

OrganizationHosting Services, Inc.

IP Category

⊕

VPN

VPN exit node

Feed Intelligence Summary

8 reports71% confidence

Source reports

71%

Confidence score

Category tags

abuseaccessaccess controlaccount discoveryaccount profilingaccount takeoveractive scanningauthenticationautomated attackbotnetbrute force attackbrute force attemptsbruteforcecommand and controlcredential accesscredential stuffingdata exfiltrationdenial of servicedistributed attacksfortiosgroupshackingindicatorinformation technologyipv4it infrastructuremalicious softwaremalwarenetworknetwork securitynorth americapassword attackpassword attacksprocess injectionreconnaissanceremote accessremote servicesresearchedscannerscriptsecurity operationssecurity policyslugsoftware developmentssl vpnsurface webt1021.001t1055t1071.001t1078t1078.001t1110t1110.001t1110.002t1110.003t1110.004t1133t1190t1203t1486t1496t1499.001t1499.002t1499.003t1555t1555.003t1565t1567t1595.001t1595.002t1595.003threat intelligencethreat preventionunauthorized accessunited statesusvpnweb application attackweb exploitation

Activity Timeline

1 total obs

Feb 2Feb 2

Threat Activity Heatmap

· Peak: 2026-02-02

Less

Mon

Wed

Fri

Jun

Jul

Aug

Sep

Oct

Nov

Dec

Jan

Feb

Mar

Apr

May

Jun

24h

Dormant

30d

Dormant

3mo

Dormant

Threat ScoreHigh Risk

SIGNAL

Signal Score

71%

Confidence

Reports

First seenOct 25, 2024

Last seenFeb 2, 2026

GeolocationUS

CountryUnited States

LocationDallas, TX

OrgHosting Services, Inc.

Coords32.7797, -96.8022

VPN

VirusTotal

Not checked

WHOIS

raw: NetRange: 206.217.192.0 - 206.217.223.255 CIDR: 206.217.192.0/19 NetName: HSI-NET-206-217-192-0-1 NetHandle: NET-206-217-192-0-1 Parent: NET206 (NET-206-0-0-0-0) NetType: Direct Allocation OriginAS: Organization: Hosting Services, Inc. (HOSTI-20) RegDate: 2009-08-18 Updated: 2022-05-25 Ref: https://rdap.arin.net/registry/ip/206.217.192.0 OrgName: Hosting Services, Inc. OrgId: HOSTI-20 Address: 115 Broadway, 5th Floor City: New York StateProv: NY PostalCode: 10006 Country: US RegDate: 2008-03-03 Updated: 2024-12-03 Ref: https://rdap.arin.net/registry/entity/HOSTI-20 OrgTechHandle: NOC12189-ARIN OrgTechName: NOC OrgTechPhone: +1-435-755-3433 OrgTechEmail: [email protected] OrgTechRef: https://rdap.arin.net/registry/entity/NOC12189-ARIN OrgAbuseHandle: HSIAB-ARIN OrgAbuseName: HSI Abuse OrgAbusePhone: +1-435-755-3433 OrgAbuseEmail: [email protected] OrgAbuseRef: https://rdap.arin.net/registry/entity/HSIAB-ARIN RNOCHandle: NOC12189-ARIN RNOCName: NOC RNOCPhone: +1-435-755-3433 RNOCEmail: [email protected] RNOCRef: https://rdap.arin.net/registry/entity/NOC12189-ARIN RAbuseHandle: HSIAB-ARIN RAbuseName: HSI Abuse RAbusePhone: +1-435-755-3433 RAbuseEmail: [email protected] RAbuseRef: https://rdap.arin.net/registry/entity/HSIAB-ARIN RTechHandle: NOC12189-ARIN RTechName: NOC RTechPhone: +1-435-755-3433 RTechEmail: [email protected] RTechRef: https://rdap.arin.net/registry/entity/NOC12189-ARIN
references: source over 3 count.csv

`206.217.206.96`

MITRE ATT&CK TTPs

Network Information

IP Category

Feed Intelligence Summary

Activity Timeline

Threat Activity Heatmap

VirusTotal

WHOIS

Export & API

IOC Journey