Latest Cyber Attacks — Real-Time Threat Feed
Live feed of the most recent cyber attacks detected by the WAYSCloud threat intelligence network. Each entry represents an independently verified malicious event reported by automated monitoring systems and verified threat reporters. This page refreshes with new data every 5 minutes.
| Time | IP Address | Attack Type | Severity | Country | Network |
|---|---|---|---|---|---|
| 2026-07-05 18:57:40 | 95.90.13.168 | SSH Brute Force | HIGH | Germany | Vodafone GmbH |
| 2026-07-05 18:57:31 | 20.104.50.116 | Web Attack | HIGH | Canada | Microsoft Corporation |
| 2026-07-05 18:55:32 | 20.163.74.93 | Web Attack | HIGH | United States | Microsoft Corporation |
| 2026-07-05 18:53:03 | 101.47.159.50 | SSH Brute Force | MEDIUM | Singapore | Byteplus Pte. Ltd. |
| 2026-07-05 18:51:40 | 188.24.47.62 | SSH Brute Force | MEDIUM | Romania | Digi Romania S.A. |
| 2026-07-05 18:51:19 | 203.192.232.180 | SSH Brute Force | MEDIUM | India | ONEOTT INTERTAINMENT LIMITED |
| 2026-07-05 18:49:01 | 171.25.158.80 | Generic Bruteforce | MEDIUM | Sweden | Patrik Lagerman |
| 2026-07-05 18:43:19 | 43.156.148.224 | SSH Brute Force | MEDIUM | Singapore | Tencent Building, Kejizhongyi Avenue |
| 2026-07-05 18:42:07 | 221.162.218.85 | SSH Brute Force | HIGH | South Korea | Korea Telecom |
| 2026-07-05 18:40:36 | 101.47.158.56 | SSH Brute Force | HIGH | Singapore | Byteplus Pte. Ltd. |
| 2026-07-05 18:38:36 | 94.26.106.33 | SSH Brute Force | MEDIUM | Germany | TechTies Inc. |
| 2026-07-05 18:37:58 | 211.62.96.42 | SSH Brute Force | MEDIUM | South Korea | Korea Telecom |
| 2026-07-05 18:36:57 | 129.121.97.147 | SSH Brute Force | HIGH | United States | Oracle Corporation |
| 2026-07-05 18:36:55 | 45.148.10.152 | SSH Brute Force | HIGH | The Netherlands | Techoff Srv Limited |
| 2026-07-05 18:34:21 | 115.190.52.176 | SSH Brute Force | HIGH | China | Beijing Volcano Engine Technology Co., Ltd. |
| 2026-07-05 18:32:52 | 170.253.206.5 | Spam | MEDIUM | United States | BCI Mississippi Broadband,LLC |
| 2026-07-05 18:32:45 | 103.98.176.164 | SSH Brute Force | HIGH | Indonesia | Universitas PGRI Semarang |
| 2026-07-05 18:30:27 | 20.102.98.53 | SSH Brute Force | HIGH | United States | Microsoft Corporation |
| 2026-07-05 18:29:26 | 203.21.120.126 | SSH Brute Force | HIGH | Mongolia | UNIVISION LLC |
| 2026-07-05 18:27:47 | 14.103.112.105 | SSH Brute Force | HIGH | China | China Telecom (Group) |
| 2026-07-05 18:25:53 | 45.148.10.141 | SSH Brute Force | HIGH | The Netherlands | Techoff Srv Limited |
| 2026-07-05 18:23:49 | 171.25.158.74 | SSH Brute Force | MEDIUM | Sweden | Patrik Lagerman |
| 2026-07-05 18:22:40 | 150.95.82.21 | SSH Brute Force | MEDIUM | Japan | GMO-Z com NetDesign Holdings Co., Ltd. |
| 2026-07-05 18:20:22 | 45.148.10.147 | SSH Brute Force | HIGH | The Netherlands | Techoff Srv Limited |
| 2026-07-05 18:20:01 | 34.178.21.247 | SSH Brute Force | MEDIUM | The Netherlands | Google LLC |
| 2026-07-05 18:19:29 | 120.27.114.237 | SSH Brute Force | HIGH | China | Hangzhou Alibaba Advertising Co.,Ltd. |
| 2026-07-05 18:17:55 | 80.94.92.128 | SSH Brute Force | HIGH | Romania | Unmanaged Ltd |
| 2026-07-05 18:15:05 | 103.73.102.106 | Web Brute Force | HIGH | Pakistan | KK Networks (Pvt) Ltd. |
| 2026-07-05 18:15:05 | 136.66.142.164 | Web Brute Force | HIGH | United States | Google LLC |
| 2026-07-05 18:15:05 | 121.101.130.66 | Web Brute Force | HIGH | Indonesia | PT SELARAS CITRA TERABIT |
| 2026-07-05 18:15:05 | 136.67.7.133 | Web Brute Force | HIGH | United States | Google LLC |
| 2026-07-05 18:15:05 | 20.226.43.166 | Web Brute Force | HIGH | Brazil | Microsoft Corporation |
| 2026-07-05 18:15:05 | 20.194.7.113 | Web Brute Force | HIGH | South Korea | Microsoft Corporation |
| 2026-07-05 18:15:05 | 136.66.5.128 | Web Brute Force | HIGH | United States | Google LLC |
| 2026-07-05 18:15:05 | 34.26.186.30 | Web Brute Force | HIGH | United States | Google LLC |
| 2026-07-05 18:15:05 | 34.30.210.13 | Web Brute Force | HIGH | United States | Google LLC |
| 2026-07-05 18:15:05 | 2a00:f29:228:98c1:f5a8:6216:2168:d8bd | Web Brute Force | HIGH | United Arab Emirates | Emirates Integrated Telecommunications Company PJSC |
| 2026-07-05 18:15:05 | 34.77.222.29 | Web Brute Force | HIGH | Belgium | Google LLC |
| 2026-07-05 18:15:05 | 35.238.154.250 | Web Brute Force | HIGH | United States | Google LLC |
| 2026-07-05 18:15:05 | 20.212.34.118 | Web Brute Force | HIGH | Singapore | Microsoft Corporation |
| 2026-07-05 18:15:05 | 20.194.6.249 | Web Brute Force | HIGH | South Korea | Microsoft Corporation |
| 2026-07-05 18:15:05 | 199.244.88.229 | Web Brute Force | HIGH | United States | Sundance International LLC |
| 2026-07-05 18:15:05 | 34.52.142.94 | Web Brute Force | HIGH | Belgium | Google LLC |
| 2026-07-05 18:15:05 | 136.107.21.173 | Web Brute Force | HIGH | United States | Google LLC |
| 2026-07-05 18:15:05 | 2602:fa59:10:a3a::1 | Web Brute Force | HIGH | United States | RouterHosting LLC |
| 2026-07-05 18:15:05 | 103.39.132.40 | Web Brute Force | HIGH | India | EMAX GLOBAL MEDIA PVT. LTD |
| 2026-07-05 18:15:05 | 46.205.200.80 | Web Brute Force | HIGH | Poland | T-Mobile Polska S.A. |
| 2026-07-05 18:15:05 | 8.235.42.252 | Web Brute Force | HIGH | United States | Google LLC |
| 2026-07-05 18:15:05 | 45.148.10.62 | Web Brute Force | HIGH | The Netherlands | Techoff Srv Limited |
| 2026-07-05 18:15:05 | 8.235.87.111 | Web Brute Force | HIGH | United States | Google LLC |
Understanding Attack Types
Automated login attempts against SSH servers using common or leaked credential lists. One of the most prevalent attack vectors on internet-facing servers.
Systematic probing of network ports to identify running services and potential vulnerabilities. Often a precursor to targeted exploitation.
Serving malicious payloads via compromised or dedicated servers. Includes ransomware, trojans, information stealers, and exploit kits.
Coordination servers used to control networks of compromised machines. These IPs issue commands to infected endpoints for DDoS, spam, and data theft.
Automated credential stuffing and login attempts against web application authentication endpoints such as WordPress, cPanel, or custom login pages.
Anomalous network behavior flagged by automated detection systems. May include reconnaissance, unusual traffic patterns, or early-stage intrusion attempts.
About This Feed
This real-time threat feed aggregates data from multiple independent sources including automated intrusion detection systems, verified fail2ban reporters, curated threat intelligence lists, and community abuse databases. Each event shown here has been independently detected and reported through our threat intelligence network.
For programmatic access to this data, use the WAYSCloud API. To investigate any IP address in detail, click through to its threat intelligence report.