#soc — Public Fediverse posts

14 лет Solar JSOC: кто стоит за защитой от киберугроз в крупнейшем коммерческом SOC страны

В конце нулевых кибербезопасность казалась довольно простым делом: антивирус на конечной точке, файервол на периметре и пентест раз в год. Тогда мало кто мог представить, что хакеры будут подолгу сидеть внутри сетей, маскируясь под легитимные действия, а количество атак на критическую инфраструктуру превысит все мыслимые пределы. Идея создать коммерческий центр мониторинга угроз зародилась в 2009 году — как предчувствие растущей сложности атак. К апрелю 2012-го она оформилась в конкретный проект. Тогда и появился JSOC как Jet Security Operations Center — проект компании «Инфосистем Джет», то есть еще до основания самого «Солара». Позже он превратился в коммерческий SOC под брендом Solar, а буква «J» в названии сохранилась как дань истории. Сегодня Solar JSOC — крупнейший коммерческий центр мониторинга и реагирования на кибератаки в России и входит в пятерку крупнейших провайдеров управляемых сервисов кибербезопасности в Европе. Ежедневно мы обрабатываем более 200 млрд ИБ-событий, защищая свыше 1500 заказчиков из госсектора, финансовой отрасли и бизнеса всех масштабов. Работа идет круглосуточно и без выходных. В этом материале расскажем о том, как возникла идея создания JSOC и как работают его специалисты.

https://habr.com/ru/companies/solarsecurity/articles/1040192/

#солар #кибербезопасность #soc #мониторинг #киберугрозы #информационная_безопасность

Security Tip: Your Incident Response plan needs actionable runbooks. 🛡️

A high-level policy is important, but during a breach, your team needs step-by-step instructions. Create specific runbooks for scenarios like unauthorized access or malware infections to reduce Mean Time to Recovery (MTTR) and ensure consistency.

Keep your response team informed with real-time vulnerability data: https://cvedatabase.com

#InfoSec #CyberSecurity #IncidentResponse #SOC

Security Tip: Your Incident Response plan needs actionable runbooks. 🛡️

A high-level policy is important, but during a breach, your team needs step-by-step instructions. Create specific runbooks for scenarios like unauthorized access or malware infections to reduce Mean Time to Recovery (MTTR) and ensure consistency.

Keep your response team informed with real-time vulnerability data: https://cvedatabase.com

#InfoSec #CyberSecurity #IncidentResponse #SOC

2026-05-25 RDP #Honeypot IOCs - 150 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 60
193.169.194.14 - 36
147.185.132.73 - 9

Top ASNs:
AS204428 - 60
AS214576 - 36
AS396982 - 36

Top Accounts:
Administr - 66
(empty) - 45
JveXvwTow - 3

Top ISPs:
SS-Net - 60
Berdiev Ruslan Mukhabatovich - 36
Google LLC - 36

Top Clients:
Unknown - 150

Top Software:
Unknown - 150

Top Keyboards:
Unknown - 150

Top IP Classification:
Unknown - 111
hosting - 39

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-25 RDP #Honeypot IOCs - 150 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 60
193.169.194.14 - 36
147.185.132.73 - 9

Top ASNs:
AS204428 - 60
AS214576 - 36
AS396982 - 36

Top Accounts:
Administr - 66
(empty) - 45
JveXvwTow - 3

Top ISPs:
SS-Net - 60
Berdiev Ruslan Mukhabatovich - 36
Google LLC - 36

Top Clients:
Unknown - 150

Top Software:
Unknown - 150

Top Keyboards:
Unknown - 150

Top IP Classification:
Unknown - 111
hosting - 39

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-25 RDP #Honeypot IOCs - 150 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 60
193.169.194.14 - 36
147.185.132.73 - 9

Top ASNs:
AS204428 - 60
AS214576 - 36
AS396982 - 36

Top Accounts:
Administr - 66
(empty) - 45
JveXvwTow - 3

Top ISPs:
SS-Net - 60
Berdiev Ruslan Mukhabatovich - 36
Google LLC - 36

Top Clients:
Unknown - 150

Top Software:
Unknown - 150

Top Keyboards:
Unknown - 150

Top IP Classification:
Unknown - 111
hosting - 39

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-25 RDP #Honeypot IOCs - 150 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 60
193.169.194.14 - 36
147.185.132.73 - 9

Top ASNs:
AS204428 - 60
AS214576 - 36
AS396982 - 36

Top Accounts:
Administr - 66
(empty) - 45
JveXvwTow - 3

Top ISPs:
SS-Net - 60
Berdiev Ruslan Mukhabatovich - 36
Google LLC - 36

Top Clients:
Unknown - 150

Top Software:
Unknown - 150

Top Keyboards:
Unknown - 150

Top IP Classification:
Unknown - 111
hosting - 39

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-25 RDP #Honeypot IOCs - 100 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 40
193.169.194.14 - 24
147.185.132.73 - 6

Top ASNs:
AS204428 - 40
AS214576 - 24
AS396982 - 24

Top Accounts:
Administr - 44
(empty) - 30
JveXvwTow - 2

Top ISPs:
SS-Net - 40
Berdiev Ruslan Mukhabatovich - 24
Google LLC - 24

Top Clients:
Unknown - 100

Top Software:
Unknown - 100

Top Keyboards:
Unknown - 100

Top IP Classification:
Unknown - 74
hosting - 26

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-25 RDP #Honeypot IOCs - 100 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 40
193.169.194.14 - 24
147.185.132.73 - 6

Top ASNs:
AS204428 - 40
AS214576 - 24
AS396982 - 24

Top Accounts:
Administr - 44
(empty) - 30
JveXvwTow - 2

Top ISPs:
SS-Net - 40
Berdiev Ruslan Mukhabatovich - 24
Google LLC - 24

Top Clients:
Unknown - 100

Top Software:
Unknown - 100

Top Keyboards:
Unknown - 100

Top IP Classification:
Unknown - 74
hosting - 26

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-25 RDP #Honeypot IOCs - 100 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 40
193.169.194.14 - 24
147.185.132.73 - 6

Top ASNs:
AS204428 - 40
AS214576 - 24
AS396982 - 24

Top Accounts:
Administr - 44
(empty) - 30
JveXvwTow - 2

Top ISPs:
SS-Net - 40
Berdiev Ruslan Mukhabatovich - 24
Google LLC - 24

Top Clients:
Unknown - 100

Top Software:
Unknown - 100

Top Keyboards:
Unknown - 100

Top IP Classification:
Unknown - 74
hosting - 26

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-25 RDP #Honeypot IOCs - 100 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 40
193.169.194.14 - 24
147.185.132.73 - 6

Top ASNs:
AS204428 - 40
AS214576 - 24
AS396982 - 24

Top Accounts:
Administr - 44
(empty) - 30
JveXvwTow - 2

Top ISPs:
SS-Net - 40
Berdiev Ruslan Mukhabatovich - 24
Google LLC - 24

Top Clients:
Unknown - 100

Top Software:
Unknown - 100

Top Keyboards:
Unknown - 100

Top IP Classification:
Unknown - 74
hosting - 26

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-25 RDP #Honeypot IOCs - 50 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 20
193.169.194.14 - 12
147.185.132.73 - 3

Top ASNs:
AS204428 - 20
AS214576 - 12
AS396982 - 12

Top Accounts:
Administr - 22
(empty) - 15
JveXvwTow - 1

Top ISPs:
SS-Net - 20
Berdiev Ruslan Mukhabatovich - 12
Google LLC - 12

Top Clients:
Unknown - 50

Top Software:
Unknown - 50

Top Keyboards:
Unknown - 50

Top IP Classification:
Unknown - 37
hosting - 13

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-25 RDP #Honeypot IOCs - 50 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 20
193.169.194.14 - 12
147.185.132.73 - 3

Top ASNs:
AS204428 - 20
AS214576 - 12
AS396982 - 12

Top Accounts:
Administr - 22
(empty) - 15
JveXvwTow - 1

Top ISPs:
SS-Net - 20
Berdiev Ruslan Mukhabatovich - 12
Google LLC - 12

Top Clients:
Unknown - 50

Top Software:
Unknown - 50

Top Keyboards:
Unknown - 50

Top IP Classification:
Unknown - 37
hosting - 13

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-25 RDP #Honeypot IOCs - 50 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 20
193.169.194.14 - 12
147.185.132.73 - 3

Top ASNs:
AS204428 - 20
AS214576 - 12
AS396982 - 12

Top Accounts:
Administr - 22
(empty) - 15
JveXvwTow - 1

Top ISPs:
SS-Net - 20
Berdiev Ruslan Mukhabatovich - 12
Google LLC - 12

Top Clients:
Unknown - 50

Top Software:
Unknown - 50

Top Keyboards:
Unknown - 50

Top IP Classification:
Unknown - 37
hosting - 13

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-25 RDP #Honeypot IOCs - 50 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 20
193.169.194.14 - 12
147.185.132.73 - 3

Top ASNs:
AS204428 - 20
AS214576 - 12
AS396982 - 12

Top Accounts:
Administr - 22
(empty) - 15
JveXvwTow - 1

Top ISPs:
SS-Net - 20
Berdiev Ruslan Mukhabatovich - 12
Google LLC - 12

Top Clients:
Unknown - 50

Top Software:
Unknown - 50

Top Keyboards:
Unknown - 50

Top IP Classification:
Unknown - 37
hosting - 13

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-24 RDP #Honeypot IOCs - 183 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 45
193.169.194.14 - 39
71.6.134.235 - 30

Top ASNs:
AS204428 - 45
AS214576 - 39
AS396982 - 36

Top Accounts:
Administr - 45
(empty) - 39
hello - 18

Top ISPs:
SS-Net - 45
Berdiev Ruslan Mukhabatovich - 39
Google LLC - 36

Top Clients:
Unknown - 183

Top Software:
Unknown - 183

Top Keyboards:
Unknown - 183

Top IP Classification:
Unknown - 102
hosting - 51
hosting & proxy - 30

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-24 RDP #Honeypot IOCs - 183 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 45
193.169.194.14 - 39
71.6.134.235 - 30

Top ASNs:
AS204428 - 45
AS214576 - 39
AS396982 - 36

Top Accounts:
Administr - 45
(empty) - 39
hello - 18

Top ISPs:
SS-Net - 45
Berdiev Ruslan Mukhabatovich - 39
Google LLC - 36

Top Clients:
Unknown - 183

Top Software:
Unknown - 183

Top Keyboards:
Unknown - 183

Top IP Classification:
Unknown - 102
hosting - 51
hosting & proxy - 30

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-24 RDP #Honeypot IOCs - 183 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 45
193.169.194.14 - 39
71.6.134.235 - 30

Top ASNs:
AS204428 - 45
AS214576 - 39
AS396982 - 36

Top Accounts:
Administr - 45
(empty) - 39
hello - 18

Top ISPs:
SS-Net - 45
Berdiev Ruslan Mukhabatovich - 39
Google LLC - 36

Top Clients:
Unknown - 183

Top Software:
Unknown - 183

Top Keyboards:
Unknown - 183

Top IP Classification:
Unknown - 102
hosting - 51
hosting & proxy - 30

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-24 RDP #Honeypot IOCs - 183 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 45
193.169.194.14 - 39
71.6.134.235 - 30

Top ASNs:
AS204428 - 45
AS214576 - 39
AS396982 - 36

Top Accounts:
Administr - 45
(empty) - 39
hello - 18

Top ISPs:
SS-Net - 45
Berdiev Ruslan Mukhabatovich - 39
Google LLC - 36

Top Clients:
Unknown - 183

Top Software:
Unknown - 183

Top Keyboards:
Unknown - 183

Top IP Classification:
Unknown - 102
hosting - 51
hosting & proxy - 30

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-24 RDP #Honeypot IOCs - 122 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 30
193.169.194.14 - 26
71.6.134.235 - 20

Top ASNs:
AS204428 - 30
AS214576 - 26
AS396982 - 24

Top Accounts:
Administr - 30
(empty) - 26
hello - 12

Top ISPs:
SS-Net - 30
Berdiev Ruslan Mukhabatovich - 26
Google LLC - 24

Top Clients:
Unknown - 122

Top Software:
Unknown - 122

Top Keyboards:
Unknown - 122

Top IP Classification:
Unknown - 68
hosting - 34
hosting & proxy - 20

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-24 RDP #Honeypot IOCs - 122 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 30
193.169.194.14 - 26
71.6.134.235 - 20

Top ASNs:
AS204428 - 30
AS214576 - 26
AS396982 - 24

Top Accounts:
Administr - 30
(empty) - 26
hello - 12

Top ISPs:
SS-Net - 30
Berdiev Ruslan Mukhabatovich - 26
Google LLC - 24

Top Clients:
Unknown - 122

Top Software:
Unknown - 122

Top Keyboards:
Unknown - 122

Top IP Classification:
Unknown - 68
hosting - 34
hosting & proxy - 20

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-24 RDP #Honeypot IOCs - 122 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 30
193.169.194.14 - 26
71.6.134.235 - 20

Top ASNs:
AS204428 - 30
AS214576 - 26
AS396982 - 24

Top Accounts:
Administr - 30
(empty) - 26
hello - 12

Top ISPs:
SS-Net - 30
Berdiev Ruslan Mukhabatovich - 26
Google LLC - 24

Top Clients:
Unknown - 122

Top Software:
Unknown - 122

Top Keyboards:
Unknown - 122

Top IP Classification:
Unknown - 68
hosting - 34
hosting & proxy - 20

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-24 RDP #Honeypot IOCs - 122 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 30
193.169.194.14 - 26
71.6.134.235 - 20

Top ASNs:
AS204428 - 30
AS214576 - 26
AS396982 - 24

Top Accounts:
Administr - 30
(empty) - 26
hello - 12

Top ISPs:
SS-Net - 30
Berdiev Ruslan Mukhabatovich - 26
Google LLC - 24

Top Clients:
Unknown - 122

Top Software:
Unknown - 122

Top Keyboards:
Unknown - 122

Top IP Classification:
Unknown - 68
hosting - 34
hosting & proxy - 20

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-24 RDP #Honeypot IOCs - 61 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 15
193.169.194.14 - 13
71.6.134.235 - 10

Top ASNs:
AS204428 - 15
AS214576 - 13
AS396982 - 12

Top Accounts:
Administr - 15
(empty) - 13
hello - 6

Top ISPs:
SS-Net - 15
Berdiev Ruslan Mukhabatovich - 13
Google LLC - 12

Top Clients:
Unknown - 61

Top Software:
Unknown - 61

Top Keyboards:
Unknown - 61

Top IP Classification:
Unknown - 34
hosting - 17
hosting & proxy - 10

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-24 RDP #Honeypot IOCs - 61 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 15
193.169.194.14 - 13
71.6.134.235 - 10

Top ASNs:
AS204428 - 15
AS214576 - 13
AS396982 - 12

Top Accounts:
Administr - 15
(empty) - 13
hello - 6

Top ISPs:
SS-Net - 15
Berdiev Ruslan Mukhabatovich - 13
Google LLC - 12

Top Clients:
Unknown - 61

Top Software:
Unknown - 61

Top Keyboards:
Unknown - 61

Top IP Classification:
Unknown - 34
hosting - 17
hosting & proxy - 10

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-24 RDP #Honeypot IOCs - 61 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 15
193.169.194.14 - 13
71.6.134.235 - 10

Top ASNs:
AS204428 - 15
AS214576 - 13
AS396982 - 12

Top Accounts:
Administr - 15
(empty) - 13
hello - 6

Top ISPs:
SS-Net - 15
Berdiev Ruslan Mukhabatovich - 13
Google LLC - 12

Top Clients:
Unknown - 61

Top Software:
Unknown - 61

Top Keyboards:
Unknown - 61

Top IP Classification:
Unknown - 34
hosting - 17
hosting & proxy - 10

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-24 RDP #Honeypot IOCs - 61 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 15
193.169.194.14 - 13
71.6.134.235 - 10

Top ASNs:
AS204428 - 15
AS214576 - 13
AS396982 - 12

Top Accounts:
Administr - 15
(empty) - 13
hello - 6

Top ISPs:
SS-Net - 15
Berdiev Ruslan Mukhabatovich - 13
Google LLC - 12

Top Clients:
Unknown - 61

Top Software:
Unknown - 61

Top Keyboards:
Unknown - 61

Top IP Classification:
Unknown - 34
hosting - 17
hosting & proxy - 10

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

Scopri Come Trasformare la Leadership nel Fitness in Ispirazione Scopri Come Trasformare la Leadership nel Fitness in Ispirazione Scopri il potere della leadership autentica. Trasforma la tua passione per il fitness in una fonte d'ispirazione per gli altri. Approfitta di strategie pratiche per migliorare la tua presenza online. Conquista il tuo pubblico con tecniche di coinvolgimento uniche. #fitness #leadership #ebook #ispirazione #SEO #websitetips #contentmanagement #audienceengagement #soc...

VIKI SNIFFER analyzed 72,953 CVEs in the latest OSINT cycle.

Key findings:

47,064 CVEs still have no CVSS
64 MITRE ATT&CK techniques identified
Strong growth in:
T1071 — Application Layer Protocol
T1055 — Process Injection
T1003.005 — Cached Credentials
T1020 — Automated Exfiltration

https://jaroslawkuchta.substack.com/p/tlpamber-viki-sniffer-threat-brief?r=8gt0a0

#CyberSecurity #ThreatIntelligence #SOC #BlueTeam #MITREATTACK #ExposureManagement #CTEM #ThreatHunting #OSINT #CVE #KEV #InfoSec #IdentitySecurity #LLMSecurity #OpenAPI #MCP #DetectionEngineering

VIKI SNIFFER analyzed 72,953 CVEs in the latest OSINT cycle.

Key findings:

47,064 CVEs still have no CVSS
64 MITRE ATT&CK techniques identified
Strong growth in:
T1071 — Application Layer Protocol
T1055 — Process Injection
T1003.005 — Cached Credentials
T1020 — Automated Exfiltration

https://jaroslawkuchta.substack.com/p/tlpamber-viki-sniffer-threat-brief?r=8gt0a0

#CyberSecurity #ThreatIntelligence #SOC #BlueTeam #MITREATTACK #ExposureManagement #CTEM #ThreatHunting #OSINT #CVE #KEV #InfoSec #IdentitySecurity #LLMSecurity #OpenAPI #MCP #DetectionEngineering

2026-05-23 RDP #Honeypot IOCs - 174 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
193.169.194.14 - 48
162.216.149.150 - 12
45.142.193.145 - 12

Top ASNs:
AS214576 - 48
AS396982 - 48
AS63949 - 15

Top Accounts:
(empty) - 51
hello - 27
Test - 18

Top ISPs:
Berdiev Ruslan Mukhabatovich - 48
Google LLC - 48
Akamai Technologies, Inc. - 15

Top Clients:
Unknown - 174

Top Software:
Unknown - 174

Top Keyboards:
Unknown - 174

Top IP Classification:
Unknown - 99
hosting - 69
hosting & proxy - 6

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-23 RDP #Honeypot IOCs - 174 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
193.169.194.14 - 48
162.216.149.150 - 12
45.142.193.145 - 12

Top ASNs:
AS214576 - 48
AS396982 - 48
AS63949 - 15

Top Accounts:
(empty) - 51
hello - 27
Test - 18

Top ISPs:
Berdiev Ruslan Mukhabatovich - 48
Google LLC - 48
Akamai Technologies, Inc. - 15

Top Clients:
Unknown - 174

Top Software:
Unknown - 174

Top Keyboards:
Unknown - 174

Top IP Classification:
Unknown - 99
hosting - 69
hosting & proxy - 6

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-23 RDP #Honeypot IOCs - 174 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
193.169.194.14 - 48
162.216.149.150 - 12
45.142.193.145 - 12

Top ASNs:
AS214576 - 48
AS396982 - 48
AS63949 - 15

Top Accounts:
(empty) - 51
hello - 27
Test - 18

Top ISPs:
Berdiev Ruslan Mukhabatovich - 48
Google LLC - 48
Akamai Technologies, Inc. - 15

Top Clients:
Unknown - 174

Top Software:
Unknown - 174

Top Keyboards:
Unknown - 174

Top IP Classification:
Unknown - 99
hosting - 69
hosting & proxy - 6

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-23 RDP #Honeypot IOCs - 174 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
193.169.194.14 - 48
162.216.149.150 - 12
45.142.193.145 - 12

Top ASNs:
AS214576 - 48
AS396982 - 48
AS63949 - 15

Top Accounts:
(empty) - 51
hello - 27
Test - 18

Top ISPs:
Berdiev Ruslan Mukhabatovich - 48
Google LLC - 48
Akamai Technologies, Inc. - 15

Top Clients:
Unknown - 174

Top Software:
Unknown - 174

Top Keyboards:
Unknown - 174

Top IP Classification:
Unknown - 99
hosting - 69
hosting & proxy - 6

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-23 RDP #Honeypot IOCs - 116 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
193.169.194.14 - 32
162.216.149.150 - 8
45.142.193.145 - 8

Top ASNs:
AS214576 - 32
AS396982 - 32
AS63949 - 10

Top Accounts:
(empty) - 34
hello - 18
Test - 12

Top ISPs:
Berdiev Ruslan Mukhabatovich - 32
Google LLC - 32
Akamai Technologies, Inc. - 10

Top Clients:
Unknown - 116

Top Software:
Unknown - 116

Top Keyboards:
Unknown - 116

Top IP Classification:
Unknown - 66
hosting - 46
hosting & proxy - 4

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-23 RDP #Honeypot IOCs - 116 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
193.169.194.14 - 32
162.216.149.150 - 8
45.142.193.145 - 8

Top ASNs:
AS214576 - 32
AS396982 - 32
AS63949 - 10

Top Accounts:
(empty) - 34
hello - 18
Test - 12

Top ISPs:
Berdiev Ruslan Mukhabatovich - 32
Google LLC - 32
Akamai Technologies, Inc. - 10

Top Clients:
Unknown - 116

Top Software:
Unknown - 116

Top Keyboards:
Unknown - 116

Top IP Classification:
Unknown - 66
hosting - 46
hosting & proxy - 4

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-23 RDP #Honeypot IOCs - 116 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
193.169.194.14 - 32
162.216.149.150 - 8
45.142.193.145 - 8

Top ASNs:
AS214576 - 32
AS396982 - 32
AS63949 - 10

Top Accounts:
(empty) - 34
hello - 18
Test - 12

Top ISPs:
Berdiev Ruslan Mukhabatovich - 32
Google LLC - 32
Akamai Technologies, Inc. - 10

Top Clients:
Unknown - 116

Top Software:
Unknown - 116

Top Keyboards:
Unknown - 116

Top IP Classification:
Unknown - 66
hosting - 46
hosting & proxy - 4

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-23 RDP #Honeypot IOCs - 116 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
193.169.194.14 - 32
162.216.149.150 - 8
45.142.193.145 - 8

Top ASNs:
AS214576 - 32
AS396982 - 32
AS63949 - 10

Top Accounts:
(empty) - 34
hello - 18
Test - 12

Top ISPs:
Berdiev Ruslan Mukhabatovich - 32
Google LLC - 32
Akamai Technologies, Inc. - 10

Top Clients:
Unknown - 116

Top Software:
Unknown - 116

Top Keyboards:
Unknown - 116

Top IP Classification:
Unknown - 66
hosting - 46
hosting & proxy - 4

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-23 RDP #Honeypot IOCs - 58 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
193.169.194.14 - 16
162.216.149.150 - 4
45.142.193.145 - 4

Top ASNs:
AS214576 - 16
AS396982 - 16
AS63949 - 5

Top Accounts:
(empty) - 17
hello - 9
Test - 6

Top ISPs:
Berdiev Ruslan Mukhabatovich - 16
Google LLC - 16
Akamai Technologies, Inc. - 5

Top Clients:
Unknown - 58

Top Software:
Unknown - 58

Top Keyboards:
Unknown - 58

Top IP Classification:
Unknown - 33
hosting - 23
hosting & proxy - 2

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-23 RDP #Honeypot IOCs - 58 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
193.169.194.14 - 16
162.216.149.150 - 4
45.142.193.145 - 4

Top ASNs:
AS214576 - 16
AS396982 - 16
AS63949 - 5

Top Accounts:
(empty) - 17
hello - 9
Test - 6

Top ISPs:
Berdiev Ruslan Mukhabatovich - 16
Google LLC - 16
Akamai Technologies, Inc. - 5

Top Clients:
Unknown - 58

Top Software:
Unknown - 58

Top Keyboards:
Unknown - 58

Top IP Classification:
Unknown - 33
hosting - 23
hosting & proxy - 2

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-23 RDP #Honeypot IOCs - 58 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
193.169.194.14 - 16
162.216.149.150 - 4
45.142.193.145 - 4

Top ASNs:
AS214576 - 16
AS396982 - 16
AS63949 - 5

Top Accounts:
(empty) - 17
hello - 9
Test - 6

Top ISPs:
Berdiev Ruslan Mukhabatovich - 16
Google LLC - 16
Akamai Technologies, Inc. - 5

Top Clients:
Unknown - 58

Top Software:
Unknown - 58

Top Keyboards:
Unknown - 58

Top IP Classification:
Unknown - 33
hosting - 23
hosting & proxy - 2

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-23 RDP #Honeypot IOCs - 58 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
193.169.194.14 - 16
162.216.149.150 - 4
45.142.193.145 - 4

Top ASNs:
AS214576 - 16
AS396982 - 16
AS63949 - 5

Top Accounts:
(empty) - 17
hello - 9
Test - 6

Top ISPs:
Berdiev Ruslan Mukhabatovich - 16
Google LLC - 16
Akamai Technologies, Inc. - 5

Top Clients:
Unknown - 58

Top Software:
Unknown - 58

Top Keyboards:
Unknown - 58

Top IP Classification:
Unknown - 33
hosting - 23
hosting & proxy - 2

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

La Liga: Espanyol vs Real Sociedad. Real Sociedad have the edge in a tight, lively duel. Kickoff 21:00 UTC+2.

Espanyol Barcelona 19.4%
Draw 27.7%
Real Sociedad San Sebastián 53.0%

#Football #Soccer #LaLiga #ESP #SOC #ESPSOC

2026-05-22 RDP #Honeypot IOCs - 567 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
46.63.101.233 - 420
193.169.194.14 - 66
147.185.132.30 - 9

Top ASNs:
AS51784 - 420
AS214576 - 66
AS396982 - 36

Top Accounts:
hello - 435
(empty) - 75
Test - 6

Top ISPs:
X-city Customers and Private - 420
Berdiev Ruslan Mukhabatovich - 66
Google LLC - 36

Top Clients:
Unknown - 567

Top Software:
Unknown - 567

Top Keyboards:
Unknown - 567

Top IP Classification:
Unknown - 501
hosting - 57
hosting & proxy - 9

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-22 RDP #Honeypot IOCs - 567 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
46.63.101.233 - 420
193.169.194.14 - 66
147.185.132.30 - 9

Top ASNs:
AS51784 - 420
AS214576 - 66
AS396982 - 36

Top Accounts:
hello - 435
(empty) - 75
Test - 6

Top ISPs:
X-city Customers and Private - 420
Berdiev Ruslan Mukhabatovich - 66
Google LLC - 36

Top Clients:
Unknown - 567

Top Software:
Unknown - 567

Top Keyboards:
Unknown - 567

Top IP Classification:
Unknown - 501
hosting - 57
hosting & proxy - 9

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-22 RDP #Honeypot IOCs - 567 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
46.63.101.233 - 420
193.169.194.14 - 66
147.185.132.30 - 9

Top ASNs:
AS51784 - 420
AS214576 - 66
AS396982 - 36

Top Accounts:
hello - 435
(empty) - 75
Test - 6

Top ISPs:
X-city Customers and Private - 420
Berdiev Ruslan Mukhabatovich - 66
Google LLC - 36

Top Clients:
Unknown - 567

Top Software:
Unknown - 567

Top Keyboards:
Unknown - 567

Top IP Classification:
Unknown - 501
hosting - 57
hosting & proxy - 9

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-22 RDP #Honeypot IOCs - 567 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
46.63.101.233 - 420
193.169.194.14 - 66
147.185.132.30 - 9

Top ASNs:
AS51784 - 420
AS214576 - 66
AS396982 - 36

Top Accounts:
hello - 435
(empty) - 75
Test - 6

Top ISPs:
X-city Customers and Private - 420
Berdiev Ruslan Mukhabatovich - 66
Google LLC - 36

Top Clients:
Unknown - 567

Top Software:
Unknown - 567

Top Keyboards:
Unknown - 567

Top IP Classification:
Unknown - 501
hosting - 57
hosting & proxy - 9

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-22 RDP #Honeypot IOCs - 378 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
46.63.101.233 - 280
193.169.194.14 - 44
147.185.132.30 - 6

Top ASNs:
AS51784 - 280
AS214576 - 44
AS396982 - 24

Top Accounts:
hello - 290
(empty) - 50
Test - 4

Top ISPs:
X-city Customers and Private - 280
Berdiev Ruslan Mukhabatovich - 44
Google LLC - 24

Top Clients:
Unknown - 378

Top Software:
Unknown - 378

Top Keyboards:
Unknown - 378

Top IP Classification:
Unknown - 334
hosting - 38
hosting & proxy - 6

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-22 RDP #Honeypot IOCs - 378 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
46.63.101.233 - 280
193.169.194.14 - 44
147.185.132.30 - 6

Top ASNs:
AS51784 - 280
AS214576 - 44
AS396982 - 24

Top Accounts:
hello - 290
(empty) - 50
Test - 4

Top ISPs:
X-city Customers and Private - 280
Berdiev Ruslan Mukhabatovich - 44
Google LLC - 24

Top Clients:
Unknown - 378

Top Software:
Unknown - 378

Top Keyboards:
Unknown - 378

Top IP Classification:
Unknown - 334
hosting - 38
hosting & proxy - 6

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-22 RDP #Honeypot IOCs - 378 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
46.63.101.233 - 280
193.169.194.14 - 44
147.185.132.30 - 6

Top ASNs:
AS51784 - 280
AS214576 - 44
AS396982 - 24

Top Accounts:
hello - 290
(empty) - 50
Test - 4

Top ISPs:
X-city Customers and Private - 280
Berdiev Ruslan Mukhabatovich - 44
Google LLC - 24

Top Clients:
Unknown - 378

Top Software:
Unknown - 378

Top Keyboards:
Unknown - 378

Top IP Classification:
Unknown - 334
hosting - 38
hosting & proxy - 6

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security