IP address 20.123.120.169 has been flagged in 321 abuse reports across 21 independent threat intelligence sources, resulting in a threat score of 100.0/100 (critical risk). The primary activity associated with this IP is aggregated threat, along with attacks, brute force, bruteforce, malware c2, severe abuse, ssh-bruteforce, ssh brute force, ssh bruteforce, web attack, web brute force.
This IP is geolocated in Ireland (Dublin) and belongs to the network Microsoft Corporation (AS8075). Reports span from 2025-08-10 to 2026-02-02.
Assessment: With 321 abuse reports, 20.123.120.169 shows persistent malicious activity that has been flagged by multiple threat intelligence feeds. The IP has been observed conducting automated SSH login attempts against internet-facing servers, a technique commonly used to gain unauthorized access to systems. This IP belongs to Microsoft Corporation, a major cloud/hosting provider — the malicious activity likely originates from a compromised or rented virtual server rather than the provider's own infrastructure.