Notable Threat
IP 172.110.223.62 is a high-risk address associated with 187 reported incidents, predominantly linked to VoIP fraud, with a threat severity rating of 7 out of 10 and an 83 percent confidence score reflecting substantial corroborating evidence. The IP originates from Hong Kong and operates within AS23470, administered by ReliableSite.Net LLC. Automated honeypot sensors recorded 20 of these reports, with the activity window spanning March to April 2026. Despite a current activity frequency rating of zero, the historical report volume and threat categorization warrant continued vigilance from operators maintaining VoIP infrastructure. The concentration of fraud-specific reports distinguishes this address from generic scanning or brute-force traffic, suggesting targeted exploitation of voice-over-internet protocol systems.
VoIP fraud represents a financially motivated threat category wherein compromised or abusing voice infrastructure is leveraged to place unauthorized calls, frequently routing through premium or international numbers to generate illicit revenue. The concrete risk involves unauthorized toll fraud charges accumulating rapidly, potential service degradation for legitimate users, and regulatory compliance complications stemming from misused telephony resources. Organizations operating exposed SIP endpoints or session border controllers should treat this IP with heightened scrutiny regardless of current activity levels.
Defensive measures include enforcing call authentication protocols such as STIR/SHAKEN, implementing real-time monitoring of call patterns and destination numbers, restricting international and premium-rate dialing capabilities, and deploying log analysis tools such as fail2ban to detect and block abusive patterns. Site operators maintaining VoIP systems should audit access controls, review call routing configurations, and establish alerting thresholds for anomalous calling volumes to mitigate exposure to this threat vector.
PH 
RO 
IR