Significant Threat
IP 87.98.242.75 is a high-risk address associated with VoIP fraud activity, registered in Germany under ASN AS16276 (OVH SAS) with a threat level of 8 out of 10 and a substantial total of 1,718 abuse reports across automated honeypot detection systems.
The IP has been flagged by 20 automated honeypot sensors between August 2025 and May 2026, with Fraud VoIP emerging as the dominant reported threat category in recent detections. Despite the high report volume, the activity frequency is rated low at 1 out of 10, suggesting the malicious behavior occurs in periodic bursts rather than continuously. The 75% confidence score indicates a well-established pattern of abuse, though some attribution uncertainty remains. OVH SAS, a major European hosting provider, operates this IP address, a network environment frequently leveraged by threat actors due to its scale and relative anonymity.
VoIP fraud exploits telephone infrastructure to generate unauthorized calls, typically routing through premium-rate or international numbers to extract financial gain. This activity consumes legitimate telephony resources, inflates operational costs for targeted organizations, and may serve as a vector for further infrastructure compromise. Even with low activity frequency, the sustained volume of abuse reports demonstrates persistent intent to exploit voice-over-internet protocol systems.
Site operators should block or rate-limit traffic from this address at the network perimeter, implement call authentication protocols such as STIR/SHAKEN to verify caller legitimacy, and monitor telephony logs for anomalous call patterns or premium-rate routing attempts. Tools like fail2ban can automate dynamic firewall rules based on repeated abuse, while restricting international and premium-rate dialing capabilities reduces exposure to financial exploitation through compromised VoIP infrastructure.
FR 
CA 
AU 
KR 
UA 
RO 
MX 
UG