#cybersec — Public Fediverse posts

THREAT MODEL: CYBERSECURITY 🧑‍💻
for May 26th, 2026
by independent journalist @violetblue

- FBI Director #KashPatel ’s store serves infostealer malware

- Hackers hand global disinfo plans of Russia’s Social Design Agency to journalists

- Former member of Dutch Intelligence and Security service advocates for breaking with #Palantir

- #Maori researchers develop a sovereign LLM after hyperscaler models ingested painstakingly-constructed Māori language repositories without consent

- #Kickstarter apologizes and reverses anti-sex policy

- #GoogleSearch readies itself for the glue factory

- Serial numbers on rice bags lead police to cult killers

- California’s operating system age check law is already broken

...and much more.

✨THREAT MODEL is free to read -- please help keep it accessible to all by becoming a patron, even $1 a month makes a difference!✨

https://www.patreon.com/posts/cybersecurity-26-159268484

#ThreatModel #ThreatModelCybersecurity #ThreatModelNewsletters #VioletBlue #infosec #cybersec #CovidIsNotOver

THREAT MODEL: CYBERSECURITY 🧑‍💻
for May 26th, 2026
by independent journalist @violetblue

- FBI Director #KashPatel ’s store serves infostealer malware

- Hackers hand global disinfo plans of Russia’s Social Design Agency to journalists

- Former member of Dutch Intelligence and Security service advocates for breaking with #Palantir

- #Maori researchers develop a sovereign LLM after hyperscaler models ingested painstakingly-constructed Māori language repositories without consent

- #Kickstarter apologizes and reverses anti-sex policy

- #GoogleSearch readies itself for the glue factory

- Serial numbers on rice bags lead police to cult killers

- California’s operating system age check law is already broken

...and much more.

✨THREAT MODEL is free to read -- please help keep it accessible to all by becoming a patron, even $1 a month makes a difference!✨

https://www.patreon.com/posts/cybersecurity-26-159268484

#ThreatModel #ThreatModelCybersecurity #ThreatModelNewsletters #VioletBlue #infosec #cybersec #CovidIsNotOver

THREAT MODEL: CYBERSECURITY 🧑‍💻
for May 26th, 2026
by independent journalist @violetblue

- FBI Director #KashPatel ’s store serves infostealer malware

- Hackers hand global disinfo plans of Russia’s Social Design Agency to journalists

- Former member of Dutch Intelligence and Security service advocates for breaking with #Palantir

- #Maori researchers develop a sovereign LLM after hyperscaler models ingested painstakingly-constructed Māori language repositories without consent

- #Kickstarter apologizes and reverses anti-sex policy

- #GoogleSearch readies itself for the glue factory

- Serial numbers on rice bags lead police to cult killers

- California’s operating system age check law is already broken

...and much more.

✨THREAT MODEL is free to read -- please help keep it accessible to all by becoming a patron, even $1 a month makes a difference!✨

https://www.patreon.com/posts/cybersecurity-26-159268484

#ThreatModel #ThreatModelCybersecurity #ThreatModelNewsletters #VioletBlue #infosec #cybersec #CovidIsNotOver

THREAT MODEL: CYBERSECURITY 🧑‍💻
for May 26th, 2026
by independent journalist @violetblue

- FBI Director #KashPatel ’s store serves infostealer malware

- Hackers hand global disinfo plans of Russia’s Social Design Agency to journalists

- Former member of Dutch Intelligence and Security service advocates for breaking with #Palantir

- #Maori researchers develop a sovereign LLM after hyperscaler models ingested painstakingly-constructed Māori language repositories without consent

- #Kickstarter apologizes and reverses anti-sex policy

- #GoogleSearch readies itself for the glue factory

- Serial numbers on rice bags lead police to cult killers

- California’s operating system age check law is already broken

...and much more.

✨THREAT MODEL is free to read -- please help keep it accessible to all by becoming a patron, even $1 a month makes a difference!✨

https://www.patreon.com/posts/cybersecurity-26-159268484

#ThreatModel #ThreatModelCybersecurity #ThreatModelNewsletters #VioletBlue #infosec #cybersec #CovidIsNotOver

THREAT MODEL: CYBERSECURITY 🧑‍💻
for May 26th, 2026
by independent journalist @violetblue

- FBI Director #KashPatel ’s store serves infostealer malware

- Hackers hand global disinfo plans of Russia’s Social Design Agency to journalists

- Former member of Dutch Intelligence and Security service advocates for breaking with #Palantir

- #Maori researchers develop a sovereign LLM after hyperscaler models ingested painstakingly-constructed Māori language repositories without consent

- #Kickstarter apologizes and reverses anti-sex policy

- #GoogleSearch readies itself for the glue factory

- Serial numbers on rice bags lead police to cult killers

- California’s operating system age check law is already broken

...and much more.

✨THREAT MODEL is free to read -- please help keep it accessible to all by becoming a patron, even $1 a month makes a difference!✨

https://www.patreon.com/posts/cybersecurity-26-159268484

#ThreatModel #ThreatModelCybersecurity #ThreatModelNewsletters #VioletBlue #infosec #cybersec #CovidIsNotOver

2026-05-25 RDP #Honeypot IOCs - 150 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 60
193.169.194.14 - 36
147.185.132.73 - 9

Top ASNs:
AS204428 - 60
AS214576 - 36
AS396982 - 36

Top Accounts:
Administr - 66
(empty) - 45
JveXvwTow - 3

Top ISPs:
SS-Net - 60
Berdiev Ruslan Mukhabatovich - 36
Google LLC - 36

Top Clients:
Unknown - 150

Top Software:
Unknown - 150

Top Keyboards:
Unknown - 150

Top IP Classification:
Unknown - 111
hosting - 39

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-25 RDP #Honeypot IOCs - 150 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 60
193.169.194.14 - 36
147.185.132.73 - 9

Top ASNs:
AS204428 - 60
AS214576 - 36
AS396982 - 36

Top Accounts:
Administr - 66
(empty) - 45
JveXvwTow - 3

Top ISPs:
SS-Net - 60
Berdiev Ruslan Mukhabatovich - 36
Google LLC - 36

Top Clients:
Unknown - 150

Top Software:
Unknown - 150

Top Keyboards:
Unknown - 150

Top IP Classification:
Unknown - 111
hosting - 39

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-25 RDP #Honeypot IOCs - 150 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 60
193.169.194.14 - 36
147.185.132.73 - 9

Top ASNs:
AS204428 - 60
AS214576 - 36
AS396982 - 36

Top Accounts:
Administr - 66
(empty) - 45
JveXvwTow - 3

Top ISPs:
SS-Net - 60
Berdiev Ruslan Mukhabatovich - 36
Google LLC - 36

Top Clients:
Unknown - 150

Top Software:
Unknown - 150

Top Keyboards:
Unknown - 150

Top IP Classification:
Unknown - 111
hosting - 39

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-25 RDP #Honeypot IOCs - 150 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 60
193.169.194.14 - 36
147.185.132.73 - 9

Top ASNs:
AS204428 - 60
AS214576 - 36
AS396982 - 36

Top Accounts:
Administr - 66
(empty) - 45
JveXvwTow - 3

Top ISPs:
SS-Net - 60
Berdiev Ruslan Mukhabatovich - 36
Google LLC - 36

Top Clients:
Unknown - 150

Top Software:
Unknown - 150

Top Keyboards:
Unknown - 150

Top IP Classification:
Unknown - 111
hosting - 39

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-25 RDP #Honeypot IOCs - 100 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 40
193.169.194.14 - 24
147.185.132.73 - 6

Top ASNs:
AS204428 - 40
AS214576 - 24
AS396982 - 24

Top Accounts:
Administr - 44
(empty) - 30
JveXvwTow - 2

Top ISPs:
SS-Net - 40
Berdiev Ruslan Mukhabatovich - 24
Google LLC - 24

Top Clients:
Unknown - 100

Top Software:
Unknown - 100

Top Keyboards:
Unknown - 100

Top IP Classification:
Unknown - 74
hosting - 26

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-25 RDP #Honeypot IOCs - 100 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 40
193.169.194.14 - 24
147.185.132.73 - 6

Top ASNs:
AS204428 - 40
AS214576 - 24
AS396982 - 24

Top Accounts:
Administr - 44
(empty) - 30
JveXvwTow - 2

Top ISPs:
SS-Net - 40
Berdiev Ruslan Mukhabatovich - 24
Google LLC - 24

Top Clients:
Unknown - 100

Top Software:
Unknown - 100

Top Keyboards:
Unknown - 100

Top IP Classification:
Unknown - 74
hosting - 26

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-25 RDP #Honeypot IOCs - 100 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 40
193.169.194.14 - 24
147.185.132.73 - 6

Top ASNs:
AS204428 - 40
AS214576 - 24
AS396982 - 24

Top Accounts:
Administr - 44
(empty) - 30
JveXvwTow - 2

Top ISPs:
SS-Net - 40
Berdiev Ruslan Mukhabatovich - 24
Google LLC - 24

Top Clients:
Unknown - 100

Top Software:
Unknown - 100

Top Keyboards:
Unknown - 100

Top IP Classification:
Unknown - 74
hosting - 26

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-25 RDP #Honeypot IOCs - 100 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 40
193.169.194.14 - 24
147.185.132.73 - 6

Top ASNs:
AS204428 - 40
AS214576 - 24
AS396982 - 24

Top Accounts:
Administr - 44
(empty) - 30
JveXvwTow - 2

Top ISPs:
SS-Net - 40
Berdiev Ruslan Mukhabatovich - 24
Google LLC - 24

Top Clients:
Unknown - 100

Top Software:
Unknown - 100

Top Keyboards:
Unknown - 100

Top IP Classification:
Unknown - 74
hosting - 26

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-25 RDP #Honeypot IOCs - 50 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 20
193.169.194.14 - 12
147.185.132.73 - 3

Top ASNs:
AS204428 - 20
AS214576 - 12
AS396982 - 12

Top Accounts:
Administr - 22
(empty) - 15
JveXvwTow - 1

Top ISPs:
SS-Net - 20
Berdiev Ruslan Mukhabatovich - 12
Google LLC - 12

Top Clients:
Unknown - 50

Top Software:
Unknown - 50

Top Keyboards:
Unknown - 50

Top IP Classification:
Unknown - 37
hosting - 13

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-25 RDP #Honeypot IOCs - 50 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 20
193.169.194.14 - 12
147.185.132.73 - 3

Top ASNs:
AS204428 - 20
AS214576 - 12
AS396982 - 12

Top Accounts:
Administr - 22
(empty) - 15
JveXvwTow - 1

Top ISPs:
SS-Net - 20
Berdiev Ruslan Mukhabatovich - 12
Google LLC - 12

Top Clients:
Unknown - 50

Top Software:
Unknown - 50

Top Keyboards:
Unknown - 50

Top IP Classification:
Unknown - 37
hosting - 13

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-25 RDP #Honeypot IOCs - 50 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 20
193.169.194.14 - 12
147.185.132.73 - 3

Top ASNs:
AS204428 - 20
AS214576 - 12
AS396982 - 12

Top Accounts:
Administr - 22
(empty) - 15
JveXvwTow - 1

Top ISPs:
SS-Net - 20
Berdiev Ruslan Mukhabatovich - 12
Google LLC - 12

Top Clients:
Unknown - 50

Top Software:
Unknown - 50

Top Keyboards:
Unknown - 50

Top IP Classification:
Unknown - 37
hosting - 13

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-25 RDP #Honeypot IOCs - 50 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 20
193.169.194.14 - 12
147.185.132.73 - 3

Top ASNs:
AS204428 - 20
AS214576 - 12
AS396982 - 12

Top Accounts:
Administr - 22
(empty) - 15
JveXvwTow - 1

Top ISPs:
SS-Net - 20
Berdiev Ruslan Mukhabatovich - 12
Google LLC - 12

Top Clients:
Unknown - 50

Top Software:
Unknown - 50

Top Keyboards:
Unknown - 50

Top IP Classification:
Unknown - 37
hosting - 13

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

🚨 PHISHING DETECTED 🚨

🔗 Suspicious URL: shopee4678[.]blogspot[.]com
🔍 Analysis at: https://phishdestroy.io/domain/shopee4678.blogspot.com/

#CryptoThreats #ScamDetection #WalletDrainers #fake #ScamPrevention #CyberFraud #cybersec

🚨 PHISHING DETECTED 🚨

🔗 Suspicious URL: shopee4678[.]blogspot[.]com
🔍 Analysis at: https://phishdestroy.io/domain/shopee4678.blogspot.com/

#CryptoThreats #ScamDetection #WalletDrainers #fake #ScamPrevention #CyberFraud #cybersec

🚨 PHISHING DETECTED 🚨

🔗 Suspicious URL: xn--2-2x5e11dq0h44hg2f0wc[.]com
🔍 Analysis at: https://phishdestroy.io/domain/xn--2-2x5e11dq0h44hg2f0wc.com/

#WalletSecurity #ScamDetection #FraudDetection #cybersec

🚨 PHISHING DETECTED 🚨

🔗 Suspicious URL: xn--2-2x5e11dq0h44hg2f0wc[.]com
🔍 Analysis at: https://phishdestroy.io/domain/xn--2-2x5e11dq0h44hg2f0wc.com/

#WalletSecurity #ScamDetection #FraudDetection #cybersec

🚨 PHISHING DETECTED 🚨

🔗 Suspicious URL: iscanxonline[.]fun
🔍 Analysis at: https://phishdestroy.io/domain/iscanxonline.fun/

#SecureYourWallet #CyberFraud #cybersec #scam #ScamDetection

🚨 PHISHING DETECTED 🚨

🔗 Suspicious URL: iscanxonline[.]fun
🔍 Analysis at: https://phishdestroy.io/domain/iscanxonline.fun/

#SecureYourWallet #CyberFraud #cybersec #scam #ScamDetection

🚨 PHISHING DETECTED 🚨

🔗 Suspicious URL: cryptodexy[.]com
🔍 Analysis at: https://phishdestroy.io/domain/cryptodexy.com/

#BlockchainSafety #cybersec #WalletSecurity #FraudDetection #CryptoAwareness

🚨 PHISHING DETECTED 🚨

🔗 Suspicious URL: cryptodexy[.]com
🔍 Analysis at: https://phishdestroy.io/domain/cryptodexy.com/

#BlockchainSafety #cybersec #WalletSecurity #FraudDetection #CryptoAwareness

🚨 PHISHING DETECTED 🚨

🔗 Suspicious URL: nibirufi-5mq[.]pages[.]dev
🔍 Analysis at: https://phishdestroy.io/domain/nibirufi-5mq.pages.dev/

#DigitalFraud #Web3Security #fake #scamalert #scam #cybersec

🚨 PHISHING DETECTED 🚨

🔗 Suspicious URL: nibirufi-5mq[.]pages[.]dev
🔍 Analysis at: https://phishdestroy.io/domain/nibirufi-5mq.pages.dev/

#DigitalFraud #Web3Security #fake #scamalert #scam #cybersec

2026-05-24 RDP #Honeypot IOCs - 183 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 45
193.169.194.14 - 39
71.6.134.235 - 30

Top ASNs:
AS204428 - 45
AS214576 - 39
AS396982 - 36

Top Accounts:
Administr - 45
(empty) - 39
hello - 18

Top ISPs:
SS-Net - 45
Berdiev Ruslan Mukhabatovich - 39
Google LLC - 36

Top Clients:
Unknown - 183

Top Software:
Unknown - 183

Top Keyboards:
Unknown - 183

Top IP Classification:
Unknown - 102
hosting - 51
hosting & proxy - 30

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-24 RDP #Honeypot IOCs - 183 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 45
193.169.194.14 - 39
71.6.134.235 - 30

Top ASNs:
AS204428 - 45
AS214576 - 39
AS396982 - 36

Top Accounts:
Administr - 45
(empty) - 39
hello - 18

Top ISPs:
SS-Net - 45
Berdiev Ruslan Mukhabatovich - 39
Google LLC - 36

Top Clients:
Unknown - 183

Top Software:
Unknown - 183

Top Keyboards:
Unknown - 183

Top IP Classification:
Unknown - 102
hosting - 51
hosting & proxy - 30

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-24 RDP #Honeypot IOCs - 183 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 45
193.169.194.14 - 39
71.6.134.235 - 30

Top ASNs:
AS204428 - 45
AS214576 - 39
AS396982 - 36

Top Accounts:
Administr - 45
(empty) - 39
hello - 18

Top ISPs:
SS-Net - 45
Berdiev Ruslan Mukhabatovich - 39
Google LLC - 36

Top Clients:
Unknown - 183

Top Software:
Unknown - 183

Top Keyboards:
Unknown - 183

Top IP Classification:
Unknown - 102
hosting - 51
hosting & proxy - 30

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-24 RDP #Honeypot IOCs - 183 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 45
193.169.194.14 - 39
71.6.134.235 - 30

Top ASNs:
AS204428 - 45
AS214576 - 39
AS396982 - 36

Top Accounts:
Administr - 45
(empty) - 39
hello - 18

Top ISPs:
SS-Net - 45
Berdiev Ruslan Mukhabatovich - 39
Google LLC - 36

Top Clients:
Unknown - 183

Top Software:
Unknown - 183

Top Keyboards:
Unknown - 183

Top IP Classification:
Unknown - 102
hosting - 51
hosting & proxy - 30

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-24 RDP #Honeypot IOCs - 122 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 30
193.169.194.14 - 26
71.6.134.235 - 20

Top ASNs:
AS204428 - 30
AS214576 - 26
AS396982 - 24

Top Accounts:
Administr - 30
(empty) - 26
hello - 12

Top ISPs:
SS-Net - 30
Berdiev Ruslan Mukhabatovich - 26
Google LLC - 24

Top Clients:
Unknown - 122

Top Software:
Unknown - 122

Top Keyboards:
Unknown - 122

Top IP Classification:
Unknown - 68
hosting - 34
hosting & proxy - 20

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-24 RDP #Honeypot IOCs - 122 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 30
193.169.194.14 - 26
71.6.134.235 - 20

Top ASNs:
AS204428 - 30
AS214576 - 26
AS396982 - 24

Top Accounts:
Administr - 30
(empty) - 26
hello - 12

Top ISPs:
SS-Net - 30
Berdiev Ruslan Mukhabatovich - 26
Google LLC - 24

Top Clients:
Unknown - 122

Top Software:
Unknown - 122

Top Keyboards:
Unknown - 122

Top IP Classification:
Unknown - 68
hosting - 34
hosting & proxy - 20

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-24 RDP #Honeypot IOCs - 122 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 30
193.169.194.14 - 26
71.6.134.235 - 20

Top ASNs:
AS204428 - 30
AS214576 - 26
AS396982 - 24

Top Accounts:
Administr - 30
(empty) - 26
hello - 12

Top ISPs:
SS-Net - 30
Berdiev Ruslan Mukhabatovich - 26
Google LLC - 24

Top Clients:
Unknown - 122

Top Software:
Unknown - 122

Top Keyboards:
Unknown - 122

Top IP Classification:
Unknown - 68
hosting - 34
hosting & proxy - 20

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-24 RDP #Honeypot IOCs - 122 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 30
193.169.194.14 - 26
71.6.134.235 - 20

Top ASNs:
AS204428 - 30
AS214576 - 26
AS396982 - 24

Top Accounts:
Administr - 30
(empty) - 26
hello - 12

Top ISPs:
SS-Net - 30
Berdiev Ruslan Mukhabatovich - 26
Google LLC - 24

Top Clients:
Unknown - 122

Top Software:
Unknown - 122

Top Keyboards:
Unknown - 122

Top IP Classification:
Unknown - 68
hosting - 34
hosting & proxy - 20

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-24 RDP #Honeypot IOCs - 61 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 15
193.169.194.14 - 13
71.6.134.235 - 10

Top ASNs:
AS204428 - 15
AS214576 - 13
AS396982 - 12

Top Accounts:
Administr - 15
(empty) - 13
hello - 6

Top ISPs:
SS-Net - 15
Berdiev Ruslan Mukhabatovich - 13
Google LLC - 12

Top Clients:
Unknown - 61

Top Software:
Unknown - 61

Top Keyboards:
Unknown - 61

Top IP Classification:
Unknown - 34
hosting - 17
hosting & proxy - 10

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-24 RDP #Honeypot IOCs - 61 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 15
193.169.194.14 - 13
71.6.134.235 - 10

Top ASNs:
AS204428 - 15
AS214576 - 13
AS396982 - 12

Top Accounts:
Administr - 15
(empty) - 13
hello - 6

Top ISPs:
SS-Net - 15
Berdiev Ruslan Mukhabatovich - 13
Google LLC - 12

Top Clients:
Unknown - 61

Top Software:
Unknown - 61

Top Keyboards:
Unknown - 61

Top IP Classification:
Unknown - 34
hosting - 17
hosting & proxy - 10

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-24 RDP #Honeypot IOCs - 61 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 15
193.169.194.14 - 13
71.6.134.235 - 10

Top ASNs:
AS204428 - 15
AS214576 - 13
AS396982 - 12

Top Accounts:
Administr - 15
(empty) - 13
hello - 6

Top ISPs:
SS-Net - 15
Berdiev Ruslan Mukhabatovich - 13
Google LLC - 12

Top Clients:
Unknown - 61

Top Software:
Unknown - 61

Top Keyboards:
Unknown - 61

Top IP Classification:
Unknown - 34
hosting - 17
hosting & proxy - 10

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-24 RDP #Honeypot IOCs - 61 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 15
193.169.194.14 - 13
71.6.134.235 - 10

Top ASNs:
AS204428 - 15
AS214576 - 13
AS396982 - 12

Top Accounts:
Administr - 15
(empty) - 13
hello - 6

Top ISPs:
SS-Net - 15
Berdiev Ruslan Mukhabatovich - 13
Google LLC - 12

Top Clients:
Unknown - 61

Top Software:
Unknown - 61

Top Keyboards:
Unknown - 61

Top IP Classification:
Unknown - 34
hosting - 17
hosting & proxy - 10

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

#Ghost #CMS #SQL #injection flaw exploited in large-scale ClickFix campaign sites like #Harvard University, affected..

#cybersecurity #cybersec #cyberops #exploits #patches

https://forums.3corns.com/viewtopic.php?t=37

#Ghost #CMS #SQL #injection flaw exploited in large-scale ClickFix campaign sites like #Harvard University, affected..

#cybersecurity #cybersec #cyberops #exploits #patches

https://forums.3corns.com/viewtopic.php?t=37

🚨 PHISHING DETECTED 🚨

🔗 Suspicious URL: saniya-s4[.]github[.]io
🔍 Analysis at: https://phishdestroy.io/domain/saniya-s4.github.io/

#WalletSecurity #DigitalFraud #cybersec #scam #NFT #PhishingScam

🚨 PHISHING DETECTED 🚨

🔗 Suspicious URL: saniya-s4[.]github[.]io
🔍 Analysis at: https://phishdestroy.io/domain/saniya-s4.github.io/

#WalletSecurity #DigitalFraud #cybersec #scam #NFT #PhishingScam

🚨 PHISHING DETECTED 🚨

🔗 Suspicious URL: mail[.]col-sopportcloud[.]top
🔍 Analysis at: https://phishdestroy.io/domain/mail.col-sopportcloud.top/

#WalletSecurity #AntiPhishing #CryptoSafety #scamalert #SecureYourWallet #cybersec #DigitalFraud

🚨 PHISHING DETECTED 🚨

🔗 Suspicious URL: mail[.]col-sopportcloud[.]top
🔍 Analysis at: https://phishdestroy.io/domain/mail.col-sopportcloud.top/

#WalletSecurity #AntiPhishing #CryptoSafety #scamalert #SecureYourWallet #cybersec #DigitalFraud

🚨 PHISHING DETECTED 🚨

🔗 Suspicious URL: mail[.]2-www-lcloud[.]com
🔍 Analysis at: https://phishdestroy.io/domain/mail.2-www-lcloud.com/

#Web3Awareness #cybersec #DigitalFraud #CyberFraud #Web3Hacking

🚨 PHISHING DETECTED 🚨

🔗 Suspicious URL: mail[.]2-www-lcloud[.]com
🔍 Analysis at: https://phishdestroy.io/domain/mail.2-www-lcloud.com/

#Web3Awareness #cybersec #DigitalFraud #CyberFraud #Web3Hacking

🚨 PHISHING DETECTED 🚨

🔗 Suspicious URL: tg-change-verify[.]ru
🔍 Analysis at: https://phishdestroy.io/domain/tg-change-verify.ru/

#ScamPrevention #cybersec #CryptoProtection #fake #scam #WalletDrainers #ScamDetection

🚨 PHISHING DETECTED 🚨

🔗 Suspicious URL: tg-change-verify[.]ru
🔍 Analysis at: https://phishdestroy.io/domain/tg-change-verify.ru/

#ScamPrevention #cybersec #CryptoProtection #fake #scam #WalletDrainers #ScamDetection

🚨 PHISHING DETECTED 🚨

🔗 Suspicious URL: online-omben-crypto[.]lol
🔍 Analysis at: https://phishdestroy.io/domain/online-omben-crypto.lol/

#WalletSecurity #fake #ScamPrevention #PhishingWarning #scamalert #cybersec #Web3Security