all InfoSec news
LSASS dumps
Jan. 23, 2022, 7:50 a.m. | /u/supersillygoose17
cybersecurity www.reddit.com
While doing threat hunting I noticed an LSASS dmp file, don't really have a lot to go on other than the device and IP are both authorized machines. Is there any legitimate reason somebody would create that dump file? I know its not a good sign but just trying to rule it out as malicious, just curious if any sysadmins or something could jump in and fill me in. Thanks in advance!
submitted by /u/supersillygoose17[link] [comments]
More from www.reddit.com / cybersecurity
Jobs in InfoSec / Cybersecurity
Information Security Engineers
@ D. E. Shaw Research | New York City
Technology Security Analyst
@ Halton Region | Oakville, Ontario, Canada
Senior Cyber Security Analyst
@ Valley Water | San Jose, CA
Computer and Forensics Investigator
@ ManTech | 221BQ - Cstmr Site,Springfield,VA
Senior Security Analyst
@ Oracle | United States
Associate Vulnerability Management Specialist
@ Diebold Nixdorf | Hyderabad, Telangana, India