Open RickTorresJr opened 1 month ago
One IP that hit me today azpdssb25.stretchoid.com[52.183.224.78]
More discussion on https://github.com/datacenters-network/security/discussions/228
another stretchoid attack: https://www.abuseipdb.com/check/172.168.41.126
I added a scan task for 172.160.0.0/11 on https://security.wdes.eu/scan/tasks
And 4.144.0.0/12
for @RickTorresJr from the initial report
My IPS got tripped today by 2 IPs. Upon further inspection these IPs resolved to stretchoid.com domains but are not on the stretchoid.com lists. Both IPs look to belong to Microsoft, 1 of them being recently transferred. Thanks.