Network-based IOC s for the current Ivanti attacks, these were collected from a ton of MISP feeds and other threat intelligence platforms. Hope this helps someone out | allinfosecnews.com

Feb. 16, 2024, 7:11 p.m. | /u/Proof-Requirement-41

cybersecurity www.reddit.com

type value comment

domain gpoaccess.com Suspected UTA0178 domain discovered via domain registration patterns

domain webb-institute.com Suspected UTA0178 domain discovered via domain registration patterns

domain symantke.com UTA0178 domain used to collect credentials from compromised devices

domain symantke.com WARPWIRE C2 server

domain miltonhouse.nl WARPWIRE variant C2 server

domain entraide-internationale.fr WARPWIRE variant C2 server

domain clickcom.click WARPWIRE variant C2 server

domain clicko.click WARPWIRE variant C2 server

domain duorhytm.fun WARPWIRE variant C2 server

domain line-api.com WARPWIRE variant C2 server

domain areekaweb.com WARPWIRE variant C2 …

attacks collect compromised credentials current cybersecurity domain hope intelligence ioc ivanti misp network patterns platforms registration threat threat intelligence threat intelligence platforms ton value webb

More from www.reddit.com / cybersecurity

What Blue Team CTFs or challenges platform would you recommend in 2024? 3 hours ago | www.reddit.com

analyst blue blue team boss +12

What's a free SIEM tool that's compatible with Windows Server? 10 hours ago | www.reddit.com

central college console cybersecurity +12

Copilot‘s screen-snapping Recall data stored in plain text 13 hours ago | www.reddit.com

copilot cybersecurity data plain text +3

Cops Swarm Global Cybercrime Botnet Infrastructure in 2 Massive Ops 15 hours ago | www.reddit.com

botnet cops cybercrime cybersecurity +4

What are the most common IAM and PAM solutions in cybersecurity? 16 hours ago | www.reddit.com

cybersecurity cybersecurity professional goal iam +5

How does hiring in APT groups work? 16 hours ago | www.reddit.com

apt apt groups can cybersecurity +5

State of WiFi Security in 2024 17 hours ago | www.reddit.com

article cybersecurity exploiting feedback +9

Prioritize Blue Team for Cybersecurity Success 19 hours ago | www.reddit.com

blue blue team box can +16

Reported a Critical Vulnerability, Retested, and Now I Guess I'm Just Shouting Into the Void? 22 hours ago | www.reddit.com

bypass critical critical vulnerability cvss +6

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland

View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City

View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL

View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US

View on infosec-jobs.com

Security Compliance Strategist

@ Grab | Petaling Jaya, Malaysia

View on infosec-jobs.com

Cloud Security Architect, Lead

@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)

View on infosec-jobs.com