Posts tagged: hunt-writeup

2 posts
high 42.105.160.225 · AS · 2 updates

Two byte-perfect qassam-315 PoC firings on the public-internet sensor (2026-05-06 + 2026-05-07), one literally CVE-named scanner from FPT Vietnam, and four UA-rotation evasion campaigns from Hosteons SG, Algeria Telecom, Deutsche Telekom DSL, and China Unicom. No state-actor (CL-STA-1132) traces — a…

cve-2026-0300 qassam-315 paloalto captive-portal hunt-writeup
2026-05-10 09:53 UTC
medium 115.190.15.61 CN · ASAS137718 · 1 update

Misconfigured Redis databases left open to the internet are being automatically taken over and used to mine cryptocurrency. We have been watching this on our public honeypot for 28 days straight; on the busiest day a single attacker hit us 6,832 times in five hours. The attackers do not need any vul…

redis-rce xmrig monero cryptojacking uc1
2026-05-09 22:51 UTC