Threat LevelCRITICAL72/1002 rule types across 2 attack categories
2 incidents on record · 2 rule types · active attack detected · active over 5 days · last seen 2d ago
| PTR | N/A |
| Org / ASN | Beijing Baidu Netcom Science and Technology Co., Ltd. |
| Country | 🇨🇳 China |
| City | Beijing, Beijing |
| Timezone | Asia/Shanghai |
Attack Analysis
SSH: Login Attempt — Non-Existent User
This IP attempted to authenticate via SSH using a username that does not exist on the system. This is characteristic of automated credential-stuffing attacks cycling through common username wordlists (admin, root, ubuntu, pi, etc.).
Suricata IDS Alert
Suricata intrusion detection flagged this IP for malicious network behaviour — including port scanning, exploit attempts, botnet activity, or known attack signatures. The specific signature is shown in the report list below.
Reports (2)
| Date | Severity | Description |
|---|---|---|
| 12 Jun 2026 - 09:16 | medium | IDS: Suricata alert — Honeypot: probe to closed SSH port 22 |
| 7 Jun 2026 - 03:27 | high | SSH: Login attempt using non-existent user |
EagleEye Intelligence