IOC Radar
IPMediumSignal 69/100

72.80.203.117

Location
United StatesUnited States
Hicksville, New York
ASN
AS701
Verizon Online LLC
First Seen
Jan 25, 2026
Last Seen
May 26, 2026
Jan 25
First Seen
140d ago
May 26
Last Seen
19d ago
8
Reports
source reports
69%
Confidence
medium
Found in 8 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
69%
Signal Score
69 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

7 techniques

Network Information

CountryUSUnited States
RegionHicksville, New York
ASNAS701
OrganizationVerizon Online LLC

Feed Intelligence Summary

8 reports69% confidence
8
Source reports
69%
Confidence score
Category tags
abuseactive scanactive scanningbad reputationbrute forcebrute force attackbrute force attackerbrute-forcebruteforcecredential accesscredential stuffingexploitexploitation activityexploited hosthackingidentity & access exploitationindicatoriot securityiot targetednetworknorth americapassword attacksportscanreconnaissanceresearchedscannerscannersservice scant1110.001t1110.002t1110.003t1110.004t1595.001t1595.002t1595.003telnettpotunited statesusvulnerability scanvulnerability-exploitationvultr

Activity Timeline

1 total obs
May 26May 26

Threat Activity Heatmap

· Peak: 2026-05-26
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreMedium Risk
69
SIGNAL
Signal Score
69%
Confidence
8
Reports
First seenJan 25, 2026
Last seenMay 26, 2026
GeolocationUS
CountryUnited States
LocationHicksville, New York
ASNAS701
OrgVerizon Online LLC
Coords40.7633, -73.5233

VirusTotal

Not checked

WHOIS

description
Score: 60/100. Labels: abuseipdb:brute-force, abuseipdb:ddos, abuseipdb:exploited-host, abuseipdb:hacking, abuseipdb:low, abuseipdb:multi-reported. 72.80.203.117 classified as automated brute-force attacker targeting SSH/Telnet credentials (medium confidence). Origin: enriched. Listed on: AbuseIPDB (brute-force, ddos, exploited-host).
raw
NetRange: 72.73.128.0 - 72.87.47.255 CIDR: 72.87.32.0/20, 72.86.0.0/16, 72.73.128.0/17, 72.74.0.0/15, 72.76.0.0/14, 72.87.0.0/19, 72.80.0.0/14, 72.84.0.0/15 NetName: VIS-72-64 NetHandle: NET-72-73-128-0-1 Parent: NET72 (NET-72-0-0-0-0) NetType: Direct Allocation OriginAS: Organization: Verizon Business (MCICS) RegDate: 2005-06-24 Updated: 2022-05-31 Ref: https://rdap.arin.net/registry/ip/72.73.128.0 OrgName: Verizon Business OrgId: MCICS Address: 22001 Loudoun County Pkwy City: Ashburn StateProv: VA PostalCode: 20147 Country: US RegDate: 2006-05-30 Updated: 2025-10-28 Ref: https://rdap.arin.net/registry/entity/MCICS OrgAbuseHandle: ABUSE3-ARIN OrgAbuseName: abuse OrgAbusePhone: +1-800-900-0241 OrgAbuseEmail: [email protected] OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE3-ARIN OrgTechHandle: SWIPP9-ARIN OrgTechName: SWIPPER OrgTechPhone: +1-800-900-0241 OrgTechEmail: [email protected] OrgTechRef: https://rdap.arin.net/registry/entity/SWIPP9-ARIN OrgAbuseHandle: ABUSE5603-ARIN OrgAbuseName: Abuse OrgAbusePhone: +1-800-900-0241 OrgAbuseEmail: [email protected] OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE5603-ARIN OrgTechHandle: VIS1-ARIN OrgTechName: Verizon Internet Services OrgTechPhone: +1-800-243-6994 OrgTechEmail: [email protected] OrgTechRef: https://rdap.arin.net/registry/entity/VIS1-ARIN OrgDNSHandle: VZDNS1-ARIN OrgDNSName: VZ-DNSADMIN OrgDNSPhone: +1-800-900-0241 OrgDNSEmail: [email protected] OrgDNSRef: https://rdap.arin.net/registry/entity/VZDNS1-ARIN RAbuseHandle: ABUSE5603-ARIN RAbuseName: Abuse RAbusePhone: +1-800-900-0241 RAbuseEmail: [email protected] RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE5603-ARIN

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 4 months ago · Last seen 19 days ago
Appeared in 8 threat reports