MSS News: Today's Activity Report


Recent News:

Activity today is low. We have seen the usual scanning and scripted attacks. Many of the attackers are already covered under the Jigsaw Security threat intelligence feeds and automated cloud protection.

We continue to see NETCORE router activity from the IP addresses below.

We continue to see exploit kit activity and have added the latest threats to event 28863.

With the exception of scanning activity that is blocked by Jigsaw Security FirstWatch Sensors, no major activity is standing out to our analyst at this time.

Recent Events:

NETCORE Router Exploits: We are seeing threat actors attacking home networking routers. Over the last few days we have noticed 3-5 IP addresses daily (and they are being changed daily) attacking home routers. Events: There are multiple events covering this issue.

IOCS:

159[.]65[.]81[.]70 206[.]189[.]226[.]218 209[.]97[.]158[.]125

#MSS

0 views

Contact: (800)447-2150 Ext. 1        To contact Jigsaw simply send a message in our chat window!

  • Facebook - Black Circle
  • Twitter - Black Circle

© 2017-2018 Jigsaw Security Enterprise Inc.

Jigsaw Security Enterprise Inc is a SDVOSB - Service Connected Disabled Veteran Owned Small Business Jigsaw Security is an operator of WIMAX networks and is operating under license WQVC235 as a common carrier, non-common carrier and private communications operator. Jigsaw Security operates cable and satellite services. Courses may be provided by a third party authorized training partner in some cases. Some training is only available for cleared and US Citizens. Courses approved by the North Carolina Department of Public Safety Private Protective Services Board for licensing and CE credits. JPM program insurance is provided by an authorized Jigsaw Security Insurance Partner and is not underwritten by Jigsaw Security. For insurance information please contact our JPM program manager. Jigsaw Security operates a network through our NCBroadband brand.