Name: Threat Intelligence: 170.239.1.28
Creator: UnwantedIP
License: https://creativecommons.org/licenses/by/4.0/

Threat LevelMEDIUM36/1001 rule type

1 incident on record · last seen 1d ago

PTR	as52878.pa.carajasnet.com
Org / ASN	REDE DE TELECOMUNICAÇÕES CARAJAS LTDA
Country	🇧🇷 Brazil
City	São Domingos do Araguaia, Pará
Timezone	America/Belem

Attack Analysis

🇧🇷 Brazil · Itupiranga · 52878 · REDE DE TELECOMUNICA ES CARAJAS LTDA

WordPress XML-RPC Abuse

This IP targeted xmlrpc.php, a legacy WordPress endpoint that has been abused for brute-force authentication attacks, credential stuffing, and DDoS amplification. Any direct access to xmlrpc.php is an attack or reconnaissance attempt; modern WordPress sites should disable it entirely.

Reports (1)

Date	Severity	Description
12 Jun 2026 - 01:25	high	Web: xmlrpc.php accessed

Report for IP: 170.239.1.28

Attack Analysis

Reports (1)