Start detecting threats BEFORE they’re weaponized: Request a demo today.
In the last release, we introduced Total View – a one stop shop for domain and IPv4 intelligence, without the need to access multiple menus at once. The new Release 4.5 offers additional updates that streamline workflow efficiency within the platform:
• Save time with Enterprise
• Enhanced Account Visibility
• Knowledge Base Updates
Start detecting threats BEFORE they’re weaponized. Use our Web Scanner tool for free with Silent Push Community Edition: www.silentpush.com/community.
Data enrichment is a threat intelligence mechanism that allows security teams to pinpoint the origin, function and risk level of a domain or IP address, by applying multiple categories and sub-categories that provide up to 10x more context than standard DNS lookups and queries are able to provide. The Silent Push platform supports IPv4, IPv6, domain and ASN enrichment.
In this video, Director of Sales Engineering Maulik Limbachiya walks through the enriching an IPv4 domain in Silent Push, discussing the results and additional pivots you can take to map further infrastructure.
Community Corner is a short monthly webinar aimed at providing our Community users with tips, tricks and insights from our experts across a range of use-cases. In each session we’ll hold a live Q&A where you can ask any questions you have about the platform.
In this session, Silent Push Director of Sales Engineering Maulik Limbachiya walks through our popular Web Scanner tool.
Welcome to our first of many Community Corner sessions. Community Corner is a short monthly webinar aimed at providing our Community users with tips, tricks and insights from our experts across a range of use-cases. In each session we’ll hold a live Q&A where you can ask any questions you have about the platform.
In this session, Silent Push Head of Product Colm Diver takes you through the latest 4.4 release, and in particular, the new ‘Total View’ – one view that provides data across a multitude of Silent Push queries, scans and features from one central location. This view is a one stop shop for domain and IPv4 intelligence, without the need to access multiple menus at once, or perform extended analysis on an observable.
Start detecting threats BEFORE they’re weaponized: Sign up for our free Community Edition today: https://www.silentpush.com/community.
Release 4.4 is here and its our biggest one yet. Learn how to navigate the new ‘Total View’, preempt shifts in attacker infrastructure with our new Infrastructure Variance tool, and deep dive into domain comparisons with Context Similarity.
Silent Push Community and Enterprise users have access to four powerful Brand Impersonation queries that locate malicious Indicator of Future Attack (IOFA) infrastructure, targeting four distinct areas of your online presence: domains, favicons, emails and HTML titles.
In this video, Director of Sales Engineering Maulik Limbachiya gives a short overview of three key tools for defending against brand impersonators in Silent Push: Domain Impersonation, Email Impersonation, Favicon Impersonation and HMTL Title Impersonation.
Start detecting threats BEFORE they’re weaponized: Sign up for our free Community Edition today: https://www.silentpush.com/community
Release 4.3 has arrived! Learn how to utilize our expanded Brand Impersonation capabilities, and check out useful updates to Web Scanner, Live Scan and the UI!
Start detecting threats BEFORE they’re weaponized. Use our Web Scanner tool for free with Silent Push Community Edition: www.silentpush.com/community.
In this video, Director of Sales Engineering Maulik Limbachiya takes you through how to perform one-click pivots from within the Web Scanner results table, and how to customize your results table to best suit your use case.
On July 1, 2025, the U.S. Department of the Treasury’s Office of Foreign Assets Control (OFAC) designated Aeza Group, two affiliated companies, and four individuals for providing bulletproof hosting services that enabled global cybercriminal activity — including ransomware operations, data theft, and darknet drug trafficking.
Bulletproof hosting (BPH) refers to resilient server infrastructure used by threat actors to operate outside the reach of law enforcement. In response to the sanctions, the U.S. government froze Aeza Group’s U.S.-based assets and prohibited U.S. persons from engaging in transactions with them.
Silent Push Threat Analysts identified Aeza Group (AS216246 and AS210644) as a bulletproof hosting provider in early 2025. On July 20, 2025, Silent Push’s IOFA (Indicators of Future Attack)™ feed automatically detected a significant infrastructure shift: IP ranges from Aeza’s AS210644 began migrating to AS211522, a new autonomous system operated by Hypercore LTD.
This shift suggests an attempt to evade sanctions enforcement and continue malicious operations under new infrastructure.
One such example is IP address 83.147.192[.]5, which was previously associated with AS210644. On July 20, this IP was automatically reclassified in the Bulletproof Hosting IOFA™ feed to reflect its new association with AS211522.
BGP data from bgp.tools confirms that the 83.147.192.0/24 subnet has been announced by both ASNs, supporting the attribution.
According to Silent Push data, ASN 211522 was allocated on July 10, 2025, as confirmed by a search within the Total View platform. The data also shows that the ASN already contains over 2,100 IP addresses, indicating an unusually rapid ramp-up for a newly allocated ASN — a pattern not typically observed.
Silent Push Threat Analysts will continue to investigate ASN 211522 and welcome any leads related to suspicious bulletproof hosting infrastructure or additional context surrounding the Aeza Group IP migration.
Through continuous infrastructure monitoring, Silent Push is able to detect and track emerging BPH providers before they’re widely used in active campaigns. The migration to AS211522 is likely either a rebrand by Aeza or a handoff to a closely aligned cybercriminal entity.
Silent Push IOFA™ feeds are designed to identify attacker infrastructure — before it’s operationalized. From bulletproof hosting to phishing domains, malware C2s, and more, Silent Push provides security teams with early, actionable visibility into the infrastructure behind tomorrow’s threats.
Missed our recent webinar on Bulletproof Hosting?
It’s now available on-demand. Access it here.
Want to explore Silent Push IOFA™ feeds?
Black Hat USA 2025 is just around the corner, and the cybersecurity community is gearing up for one of the most important events of the year. While many organizations will be showcasing their latest products and services on the expo floor, our team is taking a different approach — focusing on meaningful, one-on-one conversations about the future of cyber defense.
Preemptive cyber defense is no longer just a buzzword; leading security teams are actively shifting their strategies to stop threats before they happen, rather than reacting after the fact. At Black Hat this year, we’ll be holding short, focused 1:1 sessions designed to help security teams assess their readiness and explore how to build stronger, proactive defenses.
If your team is struggling with alert fatigue, difficulty measuring ROI on detection tools, or relying heavily on post-breach intelligence, these sessions are for you. We’ll guide you through practical steps to move beyond reactive tactics and embrace a proactive, data-driven approach to security.
Why meet with us at Black Hat 2025?
Spaces are limited, so we encourage teams attending Black Hat to book their session early. Make Black Hat 2025 the turning point for your proactive cyber defense strategy.
Book your session today and begin shifting from reactive to preemptive defense.
