Name: Threat Intelligence: 5.226.140.96
Creator: UnwantedIP
License: https://creativecommons.org/licenses/by/4.0/

Threat LevelMEDIUM45/1001 rule type

2 incidents on record · active over 3 days · last seen 4d ago

PTR	5-226-140-96.infrawat.ch
Org / ASN	Hydra Communications Ltd
Country	🇬🇧 United Kingdom
City	City of London, England
Timezone	Europe/London

Attack Analysis

🇬🇧 United Kingdom · London · 25369 · Hydra Communications LTD

IDS: Database Port Scan

Suricata detected this IP scanning database ports (MySQL, PostgreSQL, Redis, MongoDB). This is reconnaissance to find exposed database services for direct exploitation or credential brute-force. Database ports should never be reachable from the internet.

Reports (2)

Date	Severity	Description
8 Jun 2026 - 22:46	high	IDS: Database port scan — ET SCAN Suspicious inbound to PostgreSQL port 5432
5 Jun 2026 - 16:09	high	IDS: Database port scan

Report for IP: 5.226.140.96

Attack Analysis

Reports (2)

Related IPs — Same /24 Block (5.226.140.0/24)