← Back to feed
AS3816 COLOMBIA TELECOMUNICACIONES S.A. ESP BIC
ASN Ended mediumWhy this campaign was detected
5 IPs from the same network (COLOMBIA TELECOMUNICACIONES S.A. ESP BIC, AS3816) were active during overlapping time periods. Temporal correlation across a shared autonomous system suggests infrastructure controlled by the same entity.
Primary ASN
AS3816 · COLOMBIA TELECOMUNICACIONES S.A. ESP BIC
Subnet
—
Country
🇨🇴 CO
Cloud Provider
—
Member Count
5 IPs
Below average
Total Events
5004
Below average by volume
Started / Ended
2026-02-28 06:46 — ongoing
Attack Types
MITRE ATT&CK Techniques
Initial Access
Command and Control
Member Actors
| IP Address | Behavior | Confidence | Flags | Events | Agents | Attack Types | Hostname | Last Seen | |
|---|---|---|---|---|---|---|---|---|---|
| 152.200.181.42 | credential_harvester | 71% | 1x OSINT | 1845 | 3 | ssh:bruteforce | — | 2026-07-07 08:26 | evidence → |
| 179.33.186.150 | credential_harvester | 71% | 1x OSINT | 937 | 3 | ssh:bruteforce | — | 2026-07-02 21:17 | evidence → |
| 179.32.33.161 | credential_harvester | 67% | 1110 | 3 | ssh:bruteforce | — | 2026-07-02 15:25 | evidence → | |
| 152.200.205.179 | credential_harvester | 56% | 1x OSINT | 642 | 2 | ssh:bruteforce | — | 2026-07-09 05:28 | evidence → |
| 181.234.15.225 | ssh:bruteforce | 28% | 470 | 2 | ssh:bruteforce | — | 2026-07-05 19:04 | evidence → |
VPN Known VPN or proxy provider
DROP ASN on Spamhaus DROP list
Nx OSINT Corroborated by N external threat feeds