all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

SOC141 EventID:86 — Phishing URL Detected — letsdefend.io

Add to bookmarks
Aug. 25, 2023, 3:46 p.m. | zapbroob

System Weakness - Medium systemweakness.com

SOC141 EventID:86 — Phishing URL Detected — letsdefend.io

Let’s start with examining alert report.

 
EventID :86
Event Time :Mar, 22, 2021, 09:23 PM
Rule :SOC141 - Phishing URL Detected
Level :Security Analyst
Source Address :172.16.17.49
Source Hostname :EmilyComp
Destination Address :91.189.114.8
Destination Hostname :mogagrocol.ru
Username :ellie
Request URL :http://mogagrocol.ru/wp-content/plugins/akismet/fv/index.php?email=ellie@letsdefend.io
User Agent :Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36
Device Action :Allowed

According to the alert, the source IP address 172.16.17.49 is associated with the hostname …

blue team incident response letsdefendio phishing soc

Visit resource

More from systemweakness.com / System Weakness - Medium

Understanding CSRF Attacks: Safeguarding Your Web Applications 1 day, 5 hours ago | systemweakness.com
applications attacks can compromise +26
Opacity — THM 1 day, 5 hours ago | systemweakness.com
penetration testing pentesting tryhackme tryhackme-walkthrough +1
Learning the basics of authentication with Go and htmx 1 day, 5 hours ago | systemweakness.com
encryption go htmx jwt +1
A Simple Git Misstep That Could Open Doors for Hackers 2 days, 12 hours ago | systemweakness.com
article can commit context +19
Exploring JWT Exploitation Methods 2 days, 12 hours ago | systemweakness.com
account account takeover arm continue +16
Unlocking the Network’s Secrets: A Thrilling Journey into Network Penetration Testing 2 days, 12 hours ago | systemweakness.com
cybersecurity don dream fear +15
NIDPS ⚔️ 2 days, 12 hours ago | systemweakness.com
abnormal administrator alert a network +21
How to Streamline Zombie Account Management? 3 days, 16 hours ago | systemweakness.com
access control access management account build +17
Understanding Cybersecurity Threats: Safeguarding Against Digital Perils 3 days, 17 hours ago | systemweakness.com
article consequences critical cyber +21

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

G230ISSO2 - Mid Level Information System Security Officer - Cleared

@ NiSUS Technologies | Annapolis Junction, Maryland, United States
View on infosec-jobs.com

Security Incident Response Engineer

@ Oracle | JALISCO, Mexico
View on infosec-jobs.com

Security Compliance Specialist

@ Cloudflare, Inc. | Hybrid or Remote
View on infosec-jobs.com

Senior Security DevOps

@ SAP | Sofia, BG, 1407
View on infosec-jobs.com

Senior Cyber Security Engineer

@ Node.Digital | Dulles, Virginia, United States
View on infosec-jobs.com

Manager, Data Insights and Forensics

@ Kroll | New York City, United States
View on infosec-jobs.com
View more jobs