IOC

Man-on-the-Side Attacks on the Internet - Erik Hjelmvik

Maximizing IOC Impact

| | C2, IOC, MISP, OTX, Threat Intel, Threat Intelligence, ThreatFox
Ive been thinking about threat intelligence lately. Specifically: indicators of compromise (IOC), how and where to share them to cause maximum pain to adversaries and help as many organizations as possible protect ...
NETRESEC Network Security Blog
accesscan glize spelling mistakes

CISA mixup of IOC domains

| | accesscam, accesscan, cisa, Dynu, glize, GTIG, IOC, Mandiant
Googles Threat Intelligence Group (GTIG) and Mandiants recent Disrupting the GRIDTIDE Global Cyber Espionage Campaign report is great and it has lots of good Indicators of Compromise (IOC). Many of these IOCs ...
NETRESEC Network Security Blog
accesscan glize spelling mistakes

CISA mixup of IOC domains

| | accesscam, accesscan, cisa, Dynu, glize, GTIG, IOC, Mandiant
Googles Threat Intelligence Group (GTIG) and Mandiants recent Disrupting the GRIDTIDE Global Cyber Espionage Campaign report is great and it has lots of good Indicators of Compromise (IOC). Many of these IOCs ...
NETRESEC Network Security Blog
IOC Pyramid of Pain

Optimizing IOC Retention Time

| | ascii-art, Expiration date, false positive, Ghost IOC, ids, IOC, last seen, lifespan, lifetime, NDR, Pyramid of Pain, RFC9424, SIEM
Are you importing indicators of compromise (IOC) in the form of domain names and IP addresses into your SIEM, NDR or IDS? If so, have you considered for how long you should ...
NETRESEC Network Security Blog
Boost Your Cyber Defense with NSFOCUS Integrated Threat Intelligence (NTI)

Boost Your Cyber Defense with NSFOCUS Integrated Threat Intelligence (NTI)

| | AI, Blog, IOC, NTI, Threat Intelligence
In today’s rapidly evolving cybersecurity landscape, staying ahead of threats is not just a challenge, it’s a necessity. At NSFOCUS, we are committed to providing users with the most advanced and comprehensive ...
NSFOCUS, Inc., a global network and cyber security leader, protects enterprises and carriers from advanced cyber attacks.
russian, Russia Microsoft phishing AWS Ukraine

Russian Threat Groups Turn Eyes to the Paris Olympic Games

| | disinformation campaign, Doppelganger, IOC, Paris Summer Olympics, Russia, sports, Storm-1099, Storm-1679, Terrorism
Russian threat groups are using old tactics and generative AI to run malicious disinformation campaigns meant to discredit the Paris Olympic Games, France and its president, and the IOC -- less than ...
Security Boulevard
Building an Alert System Using Snowflake

Building an Alert System Using Snowflake

| | alert, IOC, Silverfort Labs Research, snowflake, Threat Hunting
During my time here at Silverfort, I was tasked with building an alert system to send messages from our Snowflake database directly to a Slack channel. Easy enough, I thought to myself ...
Blog - Silverfort
Dissecting the new shellcode-based variant of GuLoader (CloudEyE)

Dissecting the new shellcode-based variant of GuLoader (CloudEyE)

| | IOC, Malware, Threat Hunting
One of the Spamhaus Project's malware specialists has been battling GuLoader, attempting to analyze this tricky malware. Here they share their findings and explain how you can extract URLs from GuLoader ...
The Spamhaus Project

Superior Integrity Monitoring: Getting Beyond Checkbox FIM

| | Featured Articles, FIM, IOC, Security Controls, Threat Intelligence
If File Integrity Monitoring (FIM) were easy, everyone would be doing it. Actually, it is pretty easy. It’s not exactly rocket science. Practically anyone with a modicum of Python, Perl or development skills can ...
The State of Security
Securing the Financial Sector Now and Into the Future with XDR

Securing the Financial Sector Now and Into the Future with XDR

| | Cybersecurity, EPP, Extended Detection and Response, Financial Services, Indicators of Behavior, indicators of compromise, Infosec, iob, IOC, Unified Endpoint Security, XDR
Figuring out if your organization is under attack is typically a time-consuming, labor-intensive affair. Analysts must gather data across multiple security tools and perform careful analysis, a process that can take hours, ...
Blog
Load more