AS3320 — Deutsche Telekom AG Threat Intelligence

Network Threat Summary

AS3320 (Deutsche Telekom AG) has 14,599 malicious IP addresses with 160,426 abuse reports across 4 countries. First activity recorded 2022-08-21, most recent activity 2026-04-05.

Threat Profile: The primary attack categories observed from this network are suspicious activity, severe abuse, malware c2. This network shows significant threat activity well above the global median, warranting enhanced monitoring. Affected countries include DE, GB, NL.

Risk Assessment: HIGH - Significant threat activity originates from this network. Enhanced monitoring and aggressive IP blocking are recommended.

Top Attack Categories

• Suspicious Activity 88,473 reports
• Severe Abuse 20,355 reports
• Malware C2 8,610 reports
• Spam 5,791 reports
• Moderate Threat 5,198 reports

Top Affected Countries

• DE 159,798 reports
• GB 277 reports
• NL 12 reports

Most Reported IPs

• 80.153.67.94 527 reports
• 217.86.141.158 488 reports
• 93.241.232.14 400 reports
• 217.86.134.147 293 reports
• 91.53.49.93 266 reports

Lookup an IP or Network

Check any IP address for threat intelligence or browse other ASNs.

Access ASN Intelligence via API

Integrate AS3320 threat data into your security stack with our REST API.

See how we classify and verify threats →