IOC Radar
DomainMediumSignal 0/100

blog.nsfocus.net

Location
EstoniaEstonia
First Seen
Feb 13, 2026
Last Seen
Jun 19, 2026
Feb 13
First Seen
127d ago
Jun 19
Last Seen
yesterday
2
Reports
source reports
0%
Confidence
medium
Found in 2 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
0%
Signal Score
0 / 100
IDS Rule
No
Threat Context
Tags

Feed Intelligence Summary

2 reports0% confidence
2
Source reports
0%
Confidence score
Category tags
indicatornetworkresearched

Activity Timeline

1 total obs
Jun 19Jun 19

Threat Activity Heatmap

Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
1
Minimal
30d
1
Minimal
3mo
1
Minimal
Intelligence SummaryAI Generated

This indicator of compromise, `blog.nsfocus.net`, has been identified as a benign entity with a very low risk score of 0.0 and is explicitly whitelisted across multiple threat intelligence feeds. Its inclusion in these feeds does not, by itself, indicate any hostile behavior or malicious intent directed at the organization. Instead, this status suggests that the domain is a known legitimate entity. There is no corroborating evidence to suggest malicious activity associated with this specific dom…

Threat ScoreLow Risk
0
SIGNAL
Signal Score
0%
Confidence
2
Reports
First seenFeb 13, 2026
Last seenJun 19, 2026

VirusTotal

Not checked

WHOIS

description
UnitedS held a Historical Chinese Owned Domain (for some time on both, U much longer esp starting in 2021-).. it now resides in the UK. Of note, some other interesting interests added along the tracking of this, perhaps irrelevant. Things with certainty: Crypto, Brokers, Trust Bypass and Espionage. Frightening Concerns from much research in this chain documented by many: Double agents assigned, Hits on humans, Wealth, Trusted Insiders, Corrupt IT/IP Admins (well appearing, a friend, one who knows it all, it couldn't ever be them theme), Children spyware used on adults and kids, Bets on human lives via web/webcams, Employed everyday workers a bit shaky and some well groomed unsuspecting ie: your cleaning person, your kids school superintendent, a legacy it admin, PPE grant holders, Offshore Sovereign Banks to the usps driver (all hypothetical, you get the point) making a lot of cash,man.

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 4 months ago · Last seen 1 day ago
Appeared in 2 threat reports