14.49.157.155
IP Intelligence Briefing: 14.49.157.155
Date: 2026-06-17
---
**1. Core Profile**
- Risk Score: 80 (High Risk)
- Provider: KT Corporation (AS4766)
- Geolocation: Registered to South Korea (KR), Jeju City, but geolocation plausibility is flagged as invalid.
- Network Role: Mobile Carrier (KT) โ LTE/5G technology, mobile-only infrastructure.
- Ownership: Owned by KT Corporation (APNIC registry).
---
**2. Threat & Activity Indicators**
- Threat Indicators: No direct malicious indicators (no malware, phishing, or spam sources).
- Historical Observations:
- Detected in 16 signals over 15 days, with 12% confidence in geolocation and 30% confidence in operator risk.
- No persistent malicious activity or campaign correlations.
- Subnet Context: Part of 14.49.157.0/24, with 0 abuse density and no neighboring IPs identified.
---
**3. Relationships & Network Context**
- Linked Entities:
- Same network: KORNET-KR (KTโs network segment).
- Subnet Analysis:
- No sibling IPs found in the /24 subnet.
- Subnet classified as "clean" with no threat siblings.
---
**4. Recommendations**
- Monitor Traffic: Due to high risk score and mobile carrier context, monitor for anomalies (e.g., unexpected data volumes, port scans).
- Verify Geolocation: Investigate discrepancies in geolocation data, as it is flagged as non-plausible.
- Check for Lateral Movement: Ensure no unauthorized access to adjacent network segments (though no neighbors were found).
- Firewall Actions:
- Block or restrict traffic to this IP unless explicitly required.
- Apply rules to isolate mobile carrier traffic from internal networks.
---
Conclusion:
This IP is part of KTโs mobile network in South Korea, registered to a legitimate provider. While no direct malicious indicators are present, its high risk score and mobile carrier context warrant continued monitoring for potential misuse. SOC teams should validate geolocation anomalies and ensure network segmentation controls.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | IP Manager |
| ASN | AS4766 |
| Network Name | โ |
| CIDR Block | โ |
| RIR | APNIC |
| Country | โ |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
๐ DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Mobile |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown โ Insufficient routing data to classify |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 19% | 2 | 2 |
| routing | 13% | 1 | 1 |
| services | 8% | 1 | 1 |
| ownership | 24% | 2 | 3 |
| reputation | 15% | 1 | 2 |
| geolocation | 21% | 2 | 2 |
| Overall | 17% | 9 | 11 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-07 23:03:41 UTC |
| Last Seen | 2026-06-26 18:10:38 UTC |
| Profile Built | 2026-06-22 15:07:10 UTC |
| Data Freshness | Live |
| Signal Types | 16 |
| Total Observations | 18 |
Full dossier details are available via our API.