RE: https://infosec.exchange/@spamhaus/116477165755475205

UPDATE: Commencing April 19, 🇯🇵 victims came under siege from a botnet spam campaign advertising erectile dysfunction medication to them. 💊

The vast majority of these spam emitters are behind dial-up IPs at 🇨🇳 Chinese ISPs, causing a +268% XBL listing increase at China Mobile Communications Corporation's networks in particular, pushing this ISP to rank #1 of our top 10:

👉https://www.spamhaus.org/reputation-statistics/networks/exploit/

Interestingly, some emissions are also seen out of 🇹🇷 turkcell[.]com[.]tr's networks.

The quality of these pills (should they be delivered at all) is anyone's guess -- from our perspective however, should they be as low-quality as the spam campaign advertising them, we'd strongly recommend against taking them. ;-)

#Spam #Botnet #ReputationStatistics

Over the last 30 days, we’ve seen increases in nine out of ten countries in the Top 10 hosting IPs associated with exploited devices. The most significant increase was in 🇬🇧 The United Kingdom (#5), with a +41% ⬆️ and 299,284 detections.

Meanwhile, the only country in the Top 10 that decreased was 🇷🇺 Russia (#9), with a negligible -2% ⬇️ and 95,950 detections.

Find the full list and more #ReputationStatistics here:
👉 https://www.spamhaus.org/reputation-statistics/countries/exploit/

#IPs #Countries #ThreatIntel

digitalocean[.]com is currently the #1 network hosting #botnetCCs, with 153 detections over the last 30 days. It’s disappointing to see so many major global networks still appearing in this Top10. But why does this keep happening? 🤔

Earlier this year, we explored the root causes behind this ongoing issue and what networks must do to break the cycle - learn more here ⤵️
https://www.spamhaus.org/resource-hub/botnet-c-c/networks-hosting-botnet-ccs/

Spamhaus #ReputationStatistics
👉 https://www.spamhaus.org/reputation-statistics/networks/botnet/

With a +34% ⬆️ increase, 🇮🇳 Indian-based telecoms provider "https://airtel.in" is #1 network for hosting IPs associated with exploited devices: 217,560 detections over the last 30 days....

....as well as 53 Spamhaus Blocklist (SBL) listings:
👉 https://check.spamhaus.org/sbl/listings/airtel.in/

Find more Spamhaus Reputation Statistics here:
👉 https://www.spamhaus.org/reputation-statistics/

#IPs #Exploits #Spamhaus #ReputationStatistics #ThreatIntel

Over the past 30 days, three European countries have climbed the Top 10 for hosting Botnet C&Cs:

🇩🇪 #2 Germany > +34% (193 detections)
🇳🇱 #4 Netherlands > +32% (168 detections)
🇬🇧 #8 UK > +7% (61 detections)

Meanwhile, every other country in the Top 10 has seen a reduction — from -64% to -2%.

Find out which ones in the full list below 👇
https://www.spamhaus.org/reputation-statistics/countries/botnet/

#IPs #BotnetCC #ReputationStatistics #ThreatIntel #abuseCH

With a +61% ⬆️ increase, 🇺🇸 US-based "charter.com" is #1 for hosting IPs associated with exploited devices: 193, 782 detections over the last 30 days....

....as well as 167 Spamhaus Blocklist (SBL) listings.

Spamhaus reputation statistics:
👉 https://www.spamhaus.org/reputation-statistics/networks/exploit/

SBL listings:
👉 https://check.spamhaus.org/sbl/listings/charter.com/

#IPs #Exploits #Spamhaus #ReputationStatistics #ThreatIntel

Despite a -20% ⬇️ decrease, 🇺🇸 US-based "charter.com" is #1 for hosting IPs associated with exploited devices: 139, 714 detections over the last 30 days....

....as well as 166 Spamhaus Blocklist (SBL) listings. 

Spamhaus reputation statistics:
👉 https://www.spamhaus.org/reputation-statistics/networks/exploit/
https://charter.com

SBL listings:
👉 https://check.spamhaus.org/sbl/listings/charter.com/

#IPs #Exploits #Spamhaus #ReputationStatistics #ThreatIntel

🇨🇳 Chinese network chinanet-zj ranks #1 for hosting IPs associated with exploited devices after a +352% increase in detections. That’s 197,138 detections over the last 30 days...

...as well as 1510 Spamhaus Blocklist (SBL) listings!!!

👉 SBL listings: https://check.spamhaus.org/sbl/listings/chinanet-zj/

#IPs #Exploits #Spamhaus #ReputationStatistics #ThreatIntel

+235% increase 📈 in #phishing activities 🎣 over the last 30 days for ".cc" - that's 4,991 detections!

🇨🇨 .cc is the ccTLD for the Cocos (Keeling) Islands, an Australian territory. Unsurprisingly, this #ccTLD is cheap to register, with minimal restrictions. The phishing #domains include the typical unpronounceables and those related to post and package delivery.📮📦

Find out below which ccTLD is at #4 with +216% ⬆️

Spamhaus #ReputationStatistics | Countries 🌏
https://www.spamhaus.org/reputation-statistics/cctlds/phishing/

🇮🇳 Indian telecoms provider BSNL, or Bharat Sanchar Nigam Limited ranks #5 for hosting IPs associated with exploited devices after a +298% increase in detections. That's 49,195 detections over the last 30 days...

...as well as 644 Spamhaus Blocklist (SBL) listings!!

Spamhaus reputation statistics ⤵️
https://www.spamhaus.org/reputation-statistics/networks/exploit/

bsnl.in SBL listings ⤵️
https://check.spamhaus.org/sbl/listings/bsnl.in

#IPs #Exploits #Spamhaus #ReputationStatistics #ThreatIntel