On a calm Friday afternoon, rumors of a new active threat starts hitting the various social network websites. Your CSIRT team starts checking the private channels they have with other CERTs and starts compiling a list of Indicators of Compromise (IoCs). After careful consideration, they decided to block all communications with these IoCs on the […]
La publication suivante Implementing blocklists in the Sekoia SOC platform est un article de Sekoia.io Blog.
Related posts:
The "EventLogCrasher" 0day For Remotely Disabling Windows Event Log, And a Free Micropatch For It
Latest Report Findings: Retail Trade Faces 111% Jump in Ransomware
Cyberespionage the Gamaredon way: Analysis of toolset used to spy on Ukraine in 2022 and 2023
The cyberthreat that drives businesses towards cyber risk insurance
Leave a Reply