# IP Intelligence Briefing: 216.151.130.244/32
Classification: Moderate Risk | Timestamp: 2026-06-24
Assigned To: SOC Threat Intelligence Team
Status: Information Complete
---
## Executive Summary
IP 216.151.130.244 is assigned to Cisco Webex LLC (ASN 13445) within the 216.151.128.0/20 block, geolocated to San Jose, California. The address presents a moderate risk profile (Risk Score: 40) with no active open services and no known malicious indicators. The subnet exhibits mixed risk characteristics, with 16 medium-risk neighbors and 84 low-risk siblings. No persistent threat behavior observed.
---
## Ownership & Registration
| Field | Value |
|---|---|
| **Organization** | Cisco Webex LLC |
| **ASN** | 13445 |
| **CIDR Block** | 216.151.128.0/20 |
| **RIR** | ARIN |
| **Abuse Contact** | Available via RDAP |
---
## Risk Assessment
- Overall Risk Score: 40 (Moderate Risk)
- Provider Score: 0
- Authority Score: 0
- Operator Score: 0.1304 (Minimal)
- Reputation: Moderate Risk
- Blacklist Status: 0/0 feeds (not listed)
- DNSBL Listed: 1 of 8 total lists
---
## Technical Profile
- Network Role: Firewalled / No Services
- Open Ports: None detected
- TLS Certificate: Not present
- HTTP Service: Not active
- CDN/Proxy/VPN: False (all flags negative)
- Tor Exit Node: False
- Known Attacker: False
- Spam Source: False
---
## Geolocation
| Field | Value |
|---|---|
| **Country** | United States (US) |
| **Region** | California (CA) |
| **City** | San Jose |
| **Geo Consensus** | Valid (plausible) |
---
## Network Behavior
- Route Stability: Route changes observed (last 30 days)
- Is Route Stable: False
- BGP Prefix: 216.151.128.0/20
- Origin ASN: 13445
- Hop Count: 30
- Transit Networks: Comcast
---
## Neighborhood Analysis (216.151.130.0/24)
- Total Siblings: 256
- Active Siblings: 184
- Abuse Density: 0 (Low)
- Risk Distribution: 0 High / 16 Medium / 84 Low
- Inherited Risk: 40
Notable Neighbor IPs:
- 216.151.130.0 (Risk: 25, Authority: 50)
- 216.151.130.1 (Risk: 25, Authority: 50)
- 216.151.130.2 (Risk: 25, Authority: 50)
---
## Threat Intelligence
- Threat Indicators: None
- Known Campaigns: None
- Cert Matches: 0
- Correlated IPs: 0
- Threat Persistence: 0 days
- Persistently Malicious: False
- Campaign Likelihood: Not assessed
---
## Historical Observations
Total Signals: 44 observations
Recent Activity: Multiple observations from 2026-06-24
- 18:53:16 UTC - No attacker, not Tor exit, no blacklist
- 17:53:23 UTC - Operator score: Minimal
- 11:51:28 UTC - Operator score: Minimal
- 05:47:33 UTC - Operator score: Minimal
Trend: Stable with minimal operator scoring across observation windows. No escalation in threat indicators.
---
## Relationships
Total Relationships: 141
- Same Network: Multiple associations with network CS-1711
- Network Classification: Corporate infrastructure
---
## Recommended Actions
- Block: Not recommended (no active threat indicators)
- Monitor: Standard monitoring recommended
- Allow: Permitted for Cisco Webex traffic
- Firewall Rules: No specific rules required
---
## Conclusion
IP 216.151.130.244 represents Cisco Webex corporate infrastructure with a moderate risk profile. The absence of open services, combined with Cisco's reputation as a legitimate enterprise provider, suggests benign usage. The moderate risk score is attributed to subnet-level factors rather than specific IP malicious activity. No immediate threat action required. Continue standard traffic monitoring.
---
Report Generated: 2026-06-24
Data Sources: IPDebrief Intelligence Platform
Confidence Level: Medium (DNS validation incomplete due to ICMP blocking)
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Cisco Webex LLC |
| ASN | AS13445 |
| Network Name | β |
| CIDR Block | β |
| RIR | ARIN |
| Country | β |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
π DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown β Insufficient routing data to classify |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 32% | 2 | 3 |
| routing | 20% | 1 | 1 |
| services | 8% | 1 | 1 |
| ownership | 20% | 2 | 3 |
| reputation | 33% | 1 | 3 |
| geolocation | 28% | 2 | 3 |
| Overall | 23% | 9 | 14 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-07 23:05:14 UTC |
| Last Seen | 2026-06-26 18:12:10 UTC |
| Profile Built | 2026-06-27 07:07:57 UTC |
| Data Freshness | Live |
| Signal Types | 18 |
| Total Observations | 46 |
Full dossier details are available via our API.