IP address 125.141.233.20 has been flagged in 77 abuse reports across 5 independent threat intelligence sources, resulting in a threat score of 100.0/100 (critical risk). The primary activity associated with this IP is aggregated threat, along with compromised, reconnaissance, reputation low, ssh bruteforce.
This IP is geolocated in South Korea (Gwanak-gu) and belongs to the network Korea Telecom (AS4766). Reports span from 2026-01-01 to 2026-04-17.
Assessment: Despite a lower report volume, the severity and nature of activity from 125.141.233.20 has triggered critical-level alerts across our threat detection network. The IP has been observed conducting automated SSH login attempts against internet-facing servers, a technique commonly used to gain unauthorized access to systems.