Netography Detection Model Release – March 13, 2023
Netography Detection Model Release – March 13, 2023
The Netography Threat Research Team has released its latest detections:
The team creates Netography Detection Models (NDMs) to detect botnets, malware, P2P, data exfiltration, ransomware, phishing, SPAM, DDoS activity and more. These powerful threat and network configuration detection models are included at no additional charge and are continuously refined, with new NDMs being added frequently as threats evolve. There are no packages to download, and no updates to push. All models are completely open, customizable, and transparent to your analysts.
Netography Detection Model Updates:
ackflood – This DM was updated to reduce noise and provide more accurate alerts.
amadey_detection – This DM was updated to reduce noise and provide more accurate alerts.
agenttesla_detection – This DM was updated to reduce noise and provide more accurate alerts.
dns_amplification_participation – This DM detects possible participation in a DNS amplification attack from the customer’s DNS servers.
knownddos – This DM was updated to reduce noise and provide more accurate alerts.
knownphisher – This DM was updated to reduce noise and provide more accurate alerts.
mirai_detection – This DM was updated to reduce noise and provide more accurate alerts.
nmapfingerprint – This DM was updated to reduce noise and provide more accurate alerts.
non_service_port_scanner – This DM detects a device that has started scanning the local network on a port not associated with a common service. This alert may indicate that an attacker is inside the network, scanning for vulnerabilities.
tcpnull – This DM was updated to reduce noise and provide more accurate alerts.
third_party_vpn_usage – This DM was updated to reduce noise by removing iCloud Private Relay. Since this is a built-in feature of MacOS, iPhoneOS, and iPadOS, including it causes this DM to alert excessively.
udpfrag – This DM was updated to reduce noise and provide more accurate alerts.
The Netography Threat Research Team constantly updates and improves our detection capabilities, seamlessly integrating them into the Netography Fusion® platform, so our customers can write once, then detect everywhere.
The post Netography Detection Model Release – March 13, 2023 appeared first on Netography.
*** This is a Security Bloggers Network syndicated blog from Netography authored by Netography Threat Research Team. Read the original post at: https://netography.com/netography-detection-model-release-march-13/
