Extreme Threat
IP 80.66.83.80 is a critical-risk address operating from Russia (AS216473, Bashinskii Vadim Ruslanovich) with a threat level of 10/10 and a confidence score of 94%, linked to 1,077 abuse reports dominated by general hacking activity and IoT-targeted intrusion attempts detected by honeypot sensors over a four-month active window from March to June 2026.
Evidence shows this IP generated 20 independent reports from automated honeypot sensors, with hacking-related activity accounting for 90% of recent classifications and IoT/ICS targeting comprising the remainder. The attack-pattern telemetry reveals connection-based intrusion attempts and broken TCP acknowledgment anomalies consistent with reconnaissance and exploitation workflows. An activity frequency rating of 8/10 indicates sustained, aggressive engagement against exposed services rather than opportunistic scanning.
Hacking activity at this scale encompasses vulnerability exploitation, credential attacks, and unauthorized access attempts against any exposed attack surface. The IoT/ICS targeting component signals deliberate focus on poorly secured connected devices, which often lack robust authentication and receive infrequent firmware updates, creating persistent entry points into networks. The broken acknowledgment pattern may indicate TCP state-tracking evasion techniques or fragmented payload delivery designed to bypass detection. Combined, these behaviors suggest an automated, persistent threat actor methodically probing and exploiting internet-facing systems.
Operators should block this IP at the network perimeter using firewall rules or intrusion prevention systems, implement strict rate-limiting on authentication endpoints, enforce strong password policies and multi-factor authentication across all services, and segment IoT devices onto isolated network zones. Continuous monitoring for associated connection patterns and hash-based threat intelligence feeds will support early detection of renewed activity from this source.
RO 
FR 
SE 
TR