2026-05-26 RDP #Honeypot IOCs - 153 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
193.169.194.14 - 33
165.245.181.163 - 12
165.227.21.39 - 12

Top ASNs:
AS396982 - 36
AS214576 - 33
AS14061 - 27

Top Accounts:
(empty) - 36
hello - 30
Test - 18

Top ISPs:
Google LLC - 36
Berdiev Ruslan Mukhabatovich - 33
DigitalOcean, LLC - 27

Top Clients:
Unknown - 153

Top Software:
Unknown - 153

Top Keyboards:
Unknown - 153

Top IP Classification:
hosting - 78
Unknown - 69
proxy - 6

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-26 RDP #Honeypot IOCs - 102 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
193.169.194.14 - 22
165.245.181.163 - 8
165.227.21.39 - 8

Top ASNs:
AS396982 - 24
AS214576 - 22
AS14061 - 18

Top Accounts:
(empty) - 24
hello - 20
Test - 12

Top ISPs:
Google LLC - 24
Berdiev Ruslan Mukhabatovich - 22
DigitalOcean, LLC - 18

Top Clients:
Unknown - 102

Top Software:
Unknown - 102

Top Keyboards:
Unknown - 102

Top IP Classification:
hosting - 52
Unknown - 46
proxy - 4

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-26 RDP #Honeypot IOCs - 51 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
193.169.194.14 - 11
165.245.181.163 - 4
165.227.21.39 - 4

Top ASNs:
AS396982 - 12
AS214576 - 11
AS14061 - 9

Top Accounts:
(empty) - 12
hello - 10
Test - 6

Top ISPs:
Google LLC - 12
Berdiev Ruslan Mukhabatovich - 11
DigitalOcean, LLC - 9

Top Clients:
Unknown - 51

Top Software:
Unknown - 51

Top Keyboards:
Unknown - 51

Top IP Classification:
hosting - 26
Unknown - 23
proxy - 2

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-25 RDP #Honeypot IOCs - 150 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 60
193.169.194.14 - 36
147.185.132.73 - 9

Top ASNs:
AS204428 - 60
AS214576 - 36
AS396982 - 36

Top Accounts:
Administr - 66
(empty) - 45
JveXvwTow - 3

Top ISPs:
SS-Net - 60
Berdiev Ruslan Mukhabatovich - 36
Google LLC - 36

Top Clients:
Unknown - 150

Top Software:
Unknown - 150

Top Keyboards:
Unknown - 150

Top IP Classification:
Unknown - 111
hosting - 39

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-25 RDP #Honeypot IOCs - 100 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 40
193.169.194.14 - 24
147.185.132.73 - 6

Top ASNs:
AS204428 - 40
AS214576 - 24
AS396982 - 24

Top Accounts:
Administr - 44
(empty) - 30
JveXvwTow - 2

Top ISPs:
SS-Net - 40
Berdiev Ruslan Mukhabatovich - 24
Google LLC - 24

Top Clients:
Unknown - 100

Top Software:
Unknown - 100

Top Keyboards:
Unknown - 100

Top IP Classification:
Unknown - 74
hosting - 26

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-25 RDP #Honeypot IOCs - 50 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 20
193.169.194.14 - 12
147.185.132.73 - 3

Top ASNs:
AS204428 - 20
AS214576 - 12
AS396982 - 12

Top Accounts:
Administr - 22
(empty) - 15
JveXvwTow - 1

Top ISPs:
SS-Net - 20
Berdiev Ruslan Mukhabatovich - 12
Google LLC - 12

Top Clients:
Unknown - 50

Top Software:
Unknown - 50

Top Keyboards:
Unknown - 50

Top IP Classification:
Unknown - 37
hosting - 13

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

Deploying active defenses against the 'Underminr' CDN vulnerability? The Cyber Mind Co™ drops the v6.9 TSUITE Technical Playbook. Get hard-hitting metrics on SNI validation, host header cross-verification, and deep packet TLS inspection for Tier-3 SOCs. https://thecybermind.co
#ThreatHunting #SecOps

https://thecybermind.co/2026/05/25/underminr-cdn-exploit-mitigation-tech/?utm_source=mastodon&utm_medium=jetpack_social

Deploying active defenses against the 'Underminr' CDN vulnerability? The Cyber Mind Co™ drops the v6.9 TSUITE Technical Playbook. Get hard-hitting metrics on SNI validation, host header cross-verification, and deep packet TLS inspection for Tier-3 SOCs. https://thecybermind.co
#ThreatHunting #SecOps

https://thecybermind.co/2026/05/25/underminr-cdn-exploit-mitigation-tech/?utm_source=mastodon&utm_medium=jetpack_social

2026-05-24 RDP #Honeypot IOCs - 183 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 45
193.169.194.14 - 39
71.6.134.235 - 30

Top ASNs:
AS204428 - 45
AS214576 - 39
AS396982 - 36

Top Accounts:
Administr - 45
(empty) - 39
hello - 18

Top ISPs:
SS-Net - 45
Berdiev Ruslan Mukhabatovich - 39
Google LLC - 36

Top Clients:
Unknown - 183

Top Software:
Unknown - 183

Top Keyboards:
Unknown - 183

Top IP Classification:
Unknown - 102
hosting - 51
hosting & proxy - 30

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

2026-05-24 RDP #Honeypot IOCs - 122 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
80.94.95.221 - 30
193.169.194.14 - 26
71.6.134.235 - 20

Top ASNs:
AS204428 - 30
AS214576 - 26
AS396982 - 24

Top Accounts:
Administr - 30
(empty) - 26
hello - 12

Top ISPs:
SS-Net - 30
Berdiev Ruslan Mukhabatovich - 26
Google LLC - 24

Top Clients:
Unknown - 122

Top Software:
Unknown - 122

Top Keyboards:
Unknown - 122

Top IP Classification:
Unknown - 68
hosting - 34
hosting & proxy - 20

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security