Name: Threat Intelligence: 50.6.138.86
Creator: UnwantedIP
License: https://creativecommons.org/licenses/by/4.0/

Threat LevelMEDIUM40/1001 rule type

1 incident on record · seen 8h ago

PTR	br1122.hostgator.com.br
Org / ASN	Oracle Corporation
Country	🇧🇷 Brazil
City	Vinhedo, São Paulo
Timezone	America/Sao_Paulo

Attack Analysis

🇧🇷 Brazil · Vinhedo · 31898 · Newfold Digital, Inc.

WordPress XML-RPC Abuse

This IP targeted xmlrpc.php, a legacy WordPress endpoint that has been abused for brute-force authentication attacks, credential stuffing, and DDoS amplification. Any direct access to xmlrpc.php is an attack or reconnaissance attempt; modern WordPress sites should disable it entirely.

Reports (1)

Date	Severity	Description
4 Jun 2026 - 13:34	high	Web: xmlrpc.php accessed

50.6.138.86

Attack Analysis

Reports (1)

Related IPs — Same /24 Block (50.6.138.0/24)