IOC Radar
IPMediumSignal 64/100

212.132.88.156

Location
GermanyGermany
Essen, North Rhine-Westphalia
ASN
AS8560
IONOS SE
First Seen
May 30, 2026
Last Seen
Jun 6, 2026
May 30
First Seen
15d ago
Jun 6
Last Seen
8d ago
6
Reports
source reports
64%
Confidence
medium
Found in 6 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
64%
Signal Score
64 / 100
IDS Rule
No
Threat Context
Tags

Network Information

CountryDEGermany
RegionEssen, North Rhine-Westphalia
ASNAS8560
OrganizationIONOS SE

Feed Intelligence Summary

6 reports64% confidence
6
Source reports
64%
Confidence score
Category tags
active scanbrute forcebruteforcededigital oceaneuropegermanyindicatornetworkportscanredisresearchedscannerscannersservice scantargeting databaseunited kingdomvultr

Activity Timeline

1 total obs
Jun 6Jun 6

Threat Activity Heatmap

· Peak: 2026-06-06
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreMedium Risk
64
SIGNAL
Signal Score
64%
Confidence
6
Reports
First seenMay 30, 2026
Last seenJun 6, 2026
GeolocationDE
CountryGermany
LocationEssen, North Rhine-Westphalia
ASNAS8560
OrgIONOS SE
Coords51.4964, -0.1224

VirusTotal

Not checked

WHOIS

description
IPv4 hosts detected attempting to brute force REDIS on Vultr Melbourne (Australia) honeypot
raw
inetnum: 212.132.64.0 - 212.132.95.255 netname: de-fra-ionos-cloud-fra descr: IONOS SE country: DE org: ORG-SA12-RIPE admin-c: IPAD-RIPE tech-c: IPOP-RIPE abuse-c: ABDE2-RIPE status: ASSIGNED PA mnt-by: AS8560-MNT created: 2023-12-21T10:22:04Z last-modified: 2025-05-28T18:13:34Z source: RIPE organisation: ORG-SA12-RIPE org-name: IONOS SE country: DE reg-nr: District court Montabaur HRB 24498 org-type: LIR address: Hinterm Hauptbahnhof 5 address: 76137 address: Karlsruhe address: GERMANY phone: +49 721 91374 0 fax-no: +49 721 91374 212 mnt-ref: RIPE-NCC-HM-MNT mnt-ref: AS8560-MNT mnt-by: RIPE-NCC-HM-MNT mnt-by: AS8560-MNT admin-c: IPAD-RIPE abuse-c: ABDE2-RIPE created: 2004-04-17T11:11:55Z last-modified: 2026-05-13T07:08:14Z source: RIPE # Filtered role: IP Administration address: IONOS SE admin-c: SH15342-RIPE tech-c: SH15342-RIPE mnt-ref: AS8560-MNT nic-hdl: IPAD-RIPE abuse-mailbox: [email protected] mnt-by: AS8560-MNT created: 2009-05-20T17:24:09Z last-modified: 2025-09-26T12:26:46Z source: RIPE # Filtered role: IP Operations address: IONOS SE admin-c: SH15342-RIPE tech-c: SH15342-RIPE mnt-ref: AS8560-MNT nic-hdl: IPOP-RIPE abuse-mailbox: [email protected] mnt-by: AS8560-MNT created: 2009-05-28T16:25:04Z last-modified: 2025-09-26T12:26:44Z source: RIPE # Filtered route: 212.132.64.0/19 descr: IONOS SE fra.de origin: AS8560 mnt-by: AS8560-MNT created: 2024-03-08T15:31:00Z last-modified: 2024-03-08T15:31:00Z source: RIPE # Filtered
references
https://jamesbrine.com.au/digitaloceanlondon-portscan-bruteforce-ip-list-2026-06-04/, https://jamesbrine.com.au, https://jamesbrine.com.au/digitaloceanlondon-redis-bruteforce-ip-list-2026-06-04/, https://jamesbrine.com.au/vultrmelbournetest-portscan-bruteforce-ip-list-2026-06-04/, https://jamesbrine.com.au/vultrmelbournetest-redis-bruteforce-ip-list-2026-06-04/

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 15 days ago · Last seen 8 days ago
Appeared in 6 threat reports