𝕾𝖆𝖒𝖇𝖆 λ2h ago

Lol I can't anymore, #Protonmail gave Data to the #Swiss Government, and they gave this Data to the #FBI. Over the #payment Details Proton made a person identifiable.

Also #Proton tracks IP Adresses; So basically it means when you pay via any "Identifiable" Form, use your "own IP Address" or use a Recover Phone/E-Mail, Proton will identify you if they get asked for it. I said it before, and I'll say it again. Services like Proton, #tutanota and #posteo are freaking Honeypots!

via Heise & c't
https://youtu.be/I_PgvZpMga8

#protonhoneypot #proton #honeypot

Proton Mail ist nicht anonym – FBI hat Nutzer enttarnt

YouTube
RDP Snitch21h ago

2026-03-28 RDP #Honeypot IOCs - 765 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
143.198.111.35 - 495
38.76.31.20 - 108
80.94.95.221 - 48

Top ASNs:
AS14061 - 510
AS174 - 108
AS204428 - 63

Top Accounts:
hello - 606
Administr - 87
Test - 12

Top ISPs:
DigitalOcean, LLC - 510
Cogent Communications - 108
SS-Net - 63

Top Clients:
Unknown - 765

Top Software:
Unknown - 765

Top Keyboards:
Unknown - 765

Top IP Classification:
hosting & proxy - 510
Unknown - 216
hosting - 39

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

RDP Snitch21h ago

2026-03-28 RDP #Honeypot IOCs - 510 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
143.198.111.35 - 330
38.76.31.20 - 72
80.94.95.221 - 32

Top ASNs:
AS14061 - 340
AS174 - 72
AS204428 - 42

Top Accounts:
hello - 404
Administr - 58
Test - 8

Top ISPs:
DigitalOcean, LLC - 340
Cogent Communications - 72
SS-Net - 42

Top Clients:
Unknown - 510

Top Software:
Unknown - 510

Top Keyboards:
Unknown - 510

Top IP Classification:
hosting & proxy - 340
Unknown - 144
hosting - 26

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

RDP Snitch21h ago

2026-03-28 RDP #Honeypot IOCs - 255 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
143.198.111.35 - 165
38.76.31.20 - 36
80.94.95.221 - 16

Top ASNs:
AS14061 - 170
AS174 - 36
AS204428 - 21

Top Accounts:
hello - 202
Administr - 29
Test - 4

Top ISPs:
DigitalOcean, LLC - 170
Cogent Communications - 36
SS-Net - 21

Top Clients:
Unknown - 255

Top Software:
Unknown - 255

Top Keyboards:
Unknown - 255

Top IP Classification:
hosting & proxy - 170
Unknown - 72
hosting - 13

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

RDP Snitch1d ago

2026-03-27 RDP #Honeypot IOCs - 2691 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
183.81.35.16 - 2283
38.76.31.20 - 216
14.236.13.46 - 33

Top ASNs:
AS18403 - 2283
AS174 - 216
AS396982 - 48

Top Accounts:
hello - 2574
Administr - 39
Test - 18

Top ISPs:
FPT Telecom Company - 2283
Cogent Communications - 216
Google LLC - 48

Top Clients:
Unknown - 2691

Top Software:
Unknown - 2691

Top Keyboards:
Unknown - 2691

Top IP Classification:
Unknown - 2610
hosting - 81

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

RDP Snitch1d ago

2026-03-27 RDP #Honeypot IOCs - 1794 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
183.81.35.16 - 1522
38.76.31.20 - 144
14.236.13.46 - 22

Top ASNs:
AS18403 - 1522
AS174 - 144
AS396982 - 32

Top Accounts:
hello - 1716
Administr - 26
Test - 12

Top ISPs:
FPT Telecom Company - 1522
Cogent Communications - 144
Google LLC - 32

Top Clients:
Unknown - 1794

Top Software:
Unknown - 1794

Top Keyboards:
Unknown - 1794

Top IP Classification:
Unknown - 1740
hosting - 54

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

RDP Snitch1d ago

2026-03-27 RDP #Honeypot IOCs - 897 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
183.81.35.16 - 761
38.76.31.20 - 72
14.236.13.46 - 11

Top ASNs:
AS18403 - 761
AS174 - 72
AS396982 - 16

Top Accounts:
hello - 858
Administr - 13
Test - 6

Top ISPs:
FPT Telecom Company - 761
Cogent Communications - 72
Google LLC - 16

Top Clients:
Unknown - 897

Top Software:
Unknown - 897

Top Keyboards:
Unknown - 897

Top IP Classification:
Unknown - 870
hosting - 27

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

 Qiita - 人気の記事2d ago

ハニーポット観測:公開サーバで利用可能なAIサービスの探索パケットの観測状況
https://qiita.com/melymmt/items/f86de420891531b2a017?utm_campaign=popular_items&utm_medium=feed&utm_source=popular_items

#qiita #Security #honeypot #生成AI

ハニーポット観測:公開サーバで利用可能なAIサービスの探索パケットの観測状況 - Qiita

はじめに 三菱電機の山元です。 弊社のハニーポットにて、生成AIサービスを標的とした探索活動を観測しました。 今後、生成AIを利用した開発やサービス提供はさらに増加すると予測されます。その際、生成AIのモデルが外部から不正に操作されないよう、設定確認の強化が必要です。 今...

Qiita
Habr2d ago

Охота на AI-инфраструктуру, часть 2: что делают с чужим Ollama — от трейдинг-ботов до контент-ферм

В первой части я рассказал, как ханипот поймал сканер MCP-серверов — новый вектор разведки, нацеленный на AI-инфраструктуру. Сегодня — про другую сторону: что происходит, когда атакующий находит открытый Ollama. Статья документирует реальные сессии злоупотребления открытыми LLM-инстансами: кто подключается, какие промпты шлёт, какие модели запрашивает. Данные собраны с трёх ханипотов (DE, US, RU) за март 2026.

https://habr.com/ru/articles/1015646/

#honeypot #ollama #docker #threat_intelligence #container_security #LLM #AI_security #resource_hijacking

Охота на AI-инфраструктуру, часть 2: что делают с чужим Ollama — от трейдинг-ботов до контент-ферм

В первой части я рассказал, как ханипот поймал сканер MCP-серверов — новый вектор разведки, нацеленный на AI-инфраструктуру. Сегодня — про другую сторону: что происходит, когда атакующий находит...

Хабр
RDP Snitch2d ago

2026-03-26 RDP #Honeypot IOCs - 4728 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
183.81.35.16 - 4176
143.198.111.35 - 372
194.164.107.5 - 30

Top ASNs:
AS18403 - 4176
AS14061 - 384
AS396982 - 36

Top Accounts:
hello - 4560
Administr - 42
Test - 33

Top ISPs:
FPT Telecom Company - 4176
DigitalOcean, LLC - 384
Google LLC - 36

Top Clients:
Unknown - 4728

Top Software:
Unknown - 4728

Top Keyboards:
Unknown - 4728

Top IP Classification:
Unknown - 4302
hosting & proxy - 372
hosting - 54

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security