IOC Radar
IPMediumSignal 40/100

68.183.90.27

Location
IndiaIndia
Bengaluru, KA
ASN
AS14061
DigitalOcean, LLC
First Seen
Jul 4, 2023
Last Seen
Jun 12, 2026
Jul 4
First Seen
1087d ago
Jun 12
Last Seen
13d ago
6
Reports
source reports
40%
Confidence
medium
Found in 6 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
40%
Signal Score
40 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

44 techniques

Network Information

CountryINIndia
RegionBengaluru, KA
ASNAS14061
OrganizationDigitalOcean, LLC

Feed Intelligence Summary

6 reports40% confidence
6
Source reports
40%
Confidence score
Category tags
abuseactive scanactive scanningasiaaustraliabad reputationbotnetbotnet activitybrute forcebrute force attackbrute force attacksbrute force attemptsbrute-forcecommand injectioncommunication protocolcompromised hostcowrie honeypotcowrie interactionscowrie ssh attackcredential accesscredential attackcredential stuffingdata encryptiondata exfiltrationdata store exposuredatabase securityddosddos attackddos probedecoy systemdenial of servicedionaea honeypotdionaea interactionsdionaea payloadsdnsdns attackencryptionexploitexploit attemptsexploitation activityexploitation attemptexploitation attemptsexploitation of vulnerabilityexploited hostfattfatt detectionsfatt signaturesftpftp attackftp attacksftp brute forcehackinghoneytrap activityhoneytrap eventshoneytrap honeypothoneytrap interactionshttp attackhttp probinghttp scannericmpidentity & access exploitationininbound scanindiaindicatorindicators of compromiseinitial accessinjection activityinjection attacksinternet-facingioclateral movementmailoney eventsmailoney honeypotmailoney interactionsmalicious activitymalicious softwaremalicious trafficmalwaremalware analysismalware behaviourmalware capturemalware deliverymalware detectionmalware distributionmanualnetworknetwork attacksnetwork intrusion attemptnetwork intrusion attemptsnetwork intrusion detectionnetwork probingnetwork protocolnetwork reconnaissancenetwork scanningnetwork securitynetwork-based attack attemptsoceaniap0fp0f os fingerprintingp0f signaturespassword attacksphishingphishing attackphishing trapprocess injectionprotocol exploitationransomwarerdp attacksreconnaissanceremote accessremote servicesresearchedresource hijackingscannerscanning activityscripting attackssensor-taggedsentrypeer botnetsentrypeer eventssentrypeer interactionsserver exploitationservice scansmtpsmtp attackssmtp probingsmtp scanningsql injectionsql injection attemptssh attackssh attacksssh monitoringsuricata alertsuricata alertst1005t1016t1018t1020t1021t1021.001t1021.002t1040t1046t1053t1055t1059t1059.003t1059.007t1068t1071t1071.001t1076t1077t1078t1083t1110t1110.001t1110.002t1110.003t1110.004t1133t1187t1189t1190t1203t1486t1496t1499.001t1499.002t1499.003t1505.002t1555t1563t1565t1595t1595.001t1595.002t1595.003tannertanner eventstanner interactionstargeting databasetcp protocoltelecommunicationstelnet attackstelnet threatthreat actorthreat detectionthreat intelligencethreat intelligence feedtor nodetpotvnc protocolvoipvoip attackvulnerability scanweb application attackweb attackweb exploitationweb exploitsweb traffic

Activity Timeline

1 total obs
Jun 12Jun 12

Threat Activity Heatmap

· Peak: 2026-06-12
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreMedium Risk
40
SIGNAL
Signal Score
40%
Confidence
6
Reports
First seenJul 4, 2023
Last seenJun 12, 2026
GeolocationIN
CountryIndia
LocationBengaluru, KA
ASNAS14061
OrgDigitalOcean, LLC
Coords12.9634, 77.5855

VirusTotal

Not checked

WHOIS

description
Observed making inbound scans on 2026-05-24 02:40:25
raw
inetnum: 68.0.0.0 - 68.255.255.255 netname: ARIN-CIDR-BLOCK descr: Not allocated by APNIC remarks: ------------------------------------------------------ remarks: remarks: Important: remarks: remarks: Details of networks in this range are not registered remarks: in the APNIC Whois Database. remarks: remarks: Please search the ARIN Whois, which contains remarks: details of IP addresses allocated in North America, remarks: parts of the Caribbean, and sub-equatorial Africa: remarks: remarks: website: https://ws.arin.net/whois remarks: command line: whois.arin.net remarks: remarks: ------------------------------------------------------ country: AU admin-c: IANA1-AP tech-c: IANA1-AP mnt-by: MAINT-APNIC-AP mnt-lower: MAINT-APNIC-AP status: ALLOCATED PORTABLE last-modified: 2009-05-01T03:52:53Z source: APNIC role: Internet Assigned Numbers Authority address: see http://www.iana.org. admin-c: IANA1-AP tech-c: IANA1-AP nic-hdl: IANA1-AP remarks: For more information on IANA services remarks: go to IANA web site at http://www.iana.org. mnt-by: MAINT-APNIC-AP last-modified: 2018-06-22T22:34:30Z source: APNIC

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 3 years ago · Last seen 13 days ago
Appeared in 6 threat reports